The US government warns of a critical security flaw in Linux and urges users to patch it immediately

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new flaw to its Known Exploited Vulnerabilities (KEV) catalog, flagging exploits in the wild and giving federal agencies a patch deadline.

The vulnerability is described as a use-after-free flaw, found in Linux kernels from 5.14.21 through 6.6.14. Popular Linux distributions such as Debian and Ubuntu appear to be particularly vulnerable.