Discussion on securing Linux socket() calls via seccomp by blocking specific PF/AF families (e.g., AF_ALG) to mitigate potential privilege escalation risks. No specific vulnerability is disclosed.
