Two New Linux Vulnerabilities Discovered

Two new Linux vulnerabilities, identified as CVE-2025-5054 and CVE-2025-4598, have been discovered. These race condition flaws allow a local attacker to access sensitive information. The tools Apport and systemd-coredump, used for managing crash reports and core dumps, are affected. An attacker could cause a crash in a privileged process and quickly replace this process with another with the same ID, residing in a mount and pid namespace, to capture sensitive information. The severity of these vulnerabilities is moderate.