kernel: use-after-free in tc_new_tfilter() in net/sched/cls_api.c

A use-after-free vulnerability was found in the tcnewtfilter function in net/sched/clsapi.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation...

PT-2022-3307

Name of the Vulnerable Software and Affected Versions Firejail versions 0.9.68 Description A Privilege Context Switching issue was discovered in join.c in Firejail. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can...