A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pam_env's user_readenv option, which leads to a denial of service (DoS) attack.
https://bugzilla.redhat.com/show_bug.cgi?id=2292897
https://bugzilla.redhat.com/show_bug.cgi?id=2292897