A flaw was found in the Linux kernels implementation of IO-URING. An attacker with a local executable permission can create a string of requests which is able to create a use-after-free flaw within the kernel creating memory corruption and possible privilege escalation. Upstream: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=9cae36a094e7e9d6e5fe8b6dcd4642138b3eb0c7
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2096914]
This was fixed for Fedora with the 5.18.6 stable kernel updates.