Linux kernel heap overflow via filesystem context parsing — enables local privilege escalation. Container escape possible if running privileged containers. Apply kernel patches. Restrict CAP_SYS_ADMIN from all container workloads.
A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied arguments. Linux kernel LPE.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →