USN-6069-1: Linux kernel (Raspberry Pi) vulnerability
It was discovered that the Traffic-Control Index (TCINDEX) implementation
in the Linux kernel did not properly perform filter deactivation in some
situations. A local attacker could possibly use this to gain elevated
privileges. Please note that with the fix for this CVE, kernel support for
the TCINDEX classifier has been removed.
Source: USN-6069-1: Linux kernel (Raspberry Pi) vulnerability