CVE 2022-2787
Schroot before 1.6.13 had too permissive rules on chroot or session names, allowing a denial of service on the schroot service for all users that may start a schroot session.
See the 
CVE page on Mitre.org
for more details.
