QID 354275

a memory overflow vulnerability was found in the linux kernels ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores.
This flaw allows a local user to starve the resources, causing a denial of service.
The highest threat from this vulnerability is to system availability. (
( CVE-2021-3759) a use-after-free flaw was found in the linux kernels unix socket garbage collection and io_uring.
This flaw allows a local user to crash or potentially escalate their privileges on the system. (
( CVE-2022-2602) a vulnerability was found in linux kernel.
It has been declared as problematic.
Affected by this vulnerability is the function ipv6_renew_options of the component ipv6 handler.
The manipulation leads to memory leak.
The attack can be launched remotely.
It is recommended to apply a patch to fix this issue.
The identifier vdb-211021 was assigned to this vulnerability. (
( CVE-2022-3524) a vulnerability classified as problematic was found in linux kernel.
Affected by this vulnerability is the function mvpp2_dbgfs_port_init of the file drivers/net/ethernet/marvell/mvpp2/mvpp2_debugfs.c of the component mvpp2.
The identifier vdb-211033 was assigned to this vulnerability. (
( CVE-2022-3535) a vulnerability classified as problematic was found in linux kernel.
This vulnerability affects the function bnx2x_tpa_stop of the file drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c of the component bpf.
Vdb-211042 is the identifier assigned to this vulnerability. (
( CVE-2022-3542) a vulnerability classified as critical was found in linux kernel.
The manipulation leads to use after free.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.