Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "linux-oem-5.17-tools-5.17.0-1026": "5.17.0-1026.27", "linux-image-unsigned-5.17.0-1026-oem": "5.17.0-1026.27", "linux-buildinfo-5.17.0-1026-oem": "5.17.0-1026.27", "linux-image-unsigned-5.17.0-1026-oem-dbgsym": "5.17.0-1026.27", "linux-tools-5.17.0-1026-oem": "5.17.0-1026.27", "linux-modules-5.17.0-1026-oem": "5.17.0-1026.27", "linux-headers-5.17.0-1026-oem": "5.17.0-1026.27", "linux-oem-5.17-headers-5.17.0-1026": "5.17.0-1026.27", "linux-oem-5.17-tools-host": "5.17.0-1026.27", "linux-modules-iwlwifi-5.17.0-1026-oem": "5.17.0-1026.27" } ] }
{ "availability": "No subscription required", "binaries": [ { "linux-modules-6.0.0-1010-oem": "6.0.0-1010.10", "linux-headers-6.0.0-1010-oem": "6.0.0-1010.10", "linux-oem-6.0-headers-6.0.0-1010": "6.0.0-1010.10", "linux-buildinfo-6.0.0-1010-oem": "6.0.0-1010.10", "linux-image-unsigned-6.0.0-1010-oem": "6.0.0-1010.10", "linux-oem-6.0-tools-host": "6.0.0-1010.10", "linux-modules-ivsc-6.0.0-1010-oem": "6.0.0-1010.10", "linux-tools-6.0.0-1010-oem": "6.0.0-1010.10", "linux-modules-ipu6-6.0.0-1010-oem": "6.0.0-1010.10", "linux-oem-6.0-tools-6.0.0-1010": "6.0.0-1010.10", "linux-modules-iwlwifi-6.0.0-1010-oem": "6.0.0-1010.10", "linux-image-unsigned-6.0.0-1010-oem-dbgsym": "6.0.0-1010.10" } ] }