From Chrome renderer code exec to kernel with MSG_OOB

Posted by Jann Horn, Google Project Zero Introduction In early June, I was reviewing a new Linux kernel feature when I learned about the MSGOOB feature supported by stream-oriented UNIX domain sockets. I reviewed the implementation of MSGOOB, and discovered a security bug CVE-2025-38236 affecting...

PT-2024-27227

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.9 Description The issue is related to a deadlock regression in the Linux kernel's wifi: iwlwifi module, which was introduced with the LED merge in version 6.9. The deadlock occurs when all worker threads are bu...