A vulnerability (CVE-2021-26708) in the virtual networking socket stack has been closed. The flaw has been has been scored as high and is present since the kernel series 4.18. The error is due to a race condition when locking a socket and may cause local privilege escalation. It is now fixed since kernel 5.10.12.
More information also at www.sysgo.com/elinos
Twitter
LinkedIn
Facebook
Pocket
RSS
