Advisory ROSA-SA-2026-3292

CVE-ID: CVE-2026-46300 BDU-ID: None CVE-Crit: Not available CVE-DESCRIPTION: A vulnerability in the XFRM ESP-in-TCP subsystem of Linux kernels. A logical error occurs when transitioning a TCP socket to the espintcp mode after writing file data to the receive queue. The kernel processes file pages...

docker: insecure opening of file-descriptor allows privilege escalation

The runc component used by docker exec feature of docker allowed additional container processes to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain low-level access to these new processes during initialization. An attacker can,...

Linux Kernel 2.6.x - Ptrace Privilege Escalation

Linux Kernel 2.6.x - Ptrace Privilege Escalation / source: https://www.securityfocus.com/bid/25774/info The Linux kernel is prone to a local privilege-escalation vulnerability. Exploiting this issue may allow local attackers to gain elevated privileges, facilitating the complete compromise of...

Multiple Linux kernel vulnerabilities

DoS with signal handler, another one ptrace privilege escalation vulnerability...