CVE-2022-0185

Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the Filesystem Context functionality. This allows an attacker to open a filesystem that does not support the Filesystem Context API and ultimately escalate privileges. Vendor/Product: Linux Kernel. Added to CISA KEV 2024-08-21; required action: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.