Lucene search
LinuxCVELIST:CVE-2024-26582HistoryFeb 21, 2024 - 2:59 p.m.
CVE-2024-26582 net: tls: fix use-after-free with partial reads and async decrypt
2024-02-2114:59:11
Linux
www.cve.org
11
linux kernel
net
tls
vulnerability
fix
use-after-free
partial reads
async decrypt
In the Linux kernel, the following vulnerability has been resolved:
net: tls: fix use-after-free with partial reads and async decrypt
tls_decrypt_sg doesn’t take a reference on the pages from clear_skb,
so the put_page() in tls_decrypt_done releases them, and we trigger
a use-after-free in process_rx_list when we try to read from the
partially-read skb.
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/tls/tls_sw.c"
],
"versions": [
{
"version": "fd31f3996af2",
"lessThan": "20b4ed034872",
"status": "affected",
"versionType": "git"
},
{
"version": "fd31f3996af2",
"lessThan": "d684763534b9",
"status": "affected",
"versionType": "git"
},
{
"version": "fd31f3996af2",
"lessThan": "754c9bab77a1",
"status": "affected",
"versionType": "git"
},
{
"version": "fd31f3996af2",
"lessThan": "32b55c5ff910",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/tls/tls_sw.c"
],
"versions": [
{
"version": "6.0",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.0",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.79",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.18",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.6",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
debiancve
debiancve
CVE-2024-26582
2024-02-21 15:15:09
cbl_mariner
cbl_mariner
CVE-2024-26582 affecting package kernel for versions less than 6.6.22.1-2
2024-04-02 21:08:16
ubuntucve
ubuntucve
CVE-2024-26582
2024-02-21 00:00:00
redhatcve
redhatcve
CVE-2024-26582
2024-02-22 15:02:15
cve
cve
CVE-2024-26582
2024-02-21 15:15:09
nvd
nvd
CVE-2024-26582
2024-02-21 15:15:09
vulnrichment
vulnrichment
prion
prion
Design/Logic Flaw
2024-02-21 15:15:00
nessus
nessus
RHEL 9 : kernel (RHSA-2024:1881)
2024-04-18 00:00:00
RHEL 9 : kernel-rt (RHSA-2024:1882)
2024-04-18 00:00:00
Fedora 38 : kernel (2024-71f0f16533)
2024-02-28 00:00:00
redhat
redhat
(RHSA-2024:1882) Important: kernel-rt security and bug fix update
2024-04-18 00:58:57
(RHSA-2024:1881) Moderate: kernel security and bug fix update
2024-04-18 00:58:54
ibm
ibm
fedora
fedora
[SECURITY] Fedora 38 Update: kernel-6.7.6-100.fc38
2024-02-28 01:41:53
[SECURITY] Fedora 39 Update: kernel-6.7.6-200.fc39
2024-02-28 01:11:21
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2024-71f0f16533)
2024-02-28 00:00:00
Fedora: Security Advisory (FEDORA-2024-d16d94b00d)
2024-02-28 00:00:00
Ubuntu: Security Advisory (USN-6765-1)
2024-05-08 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2024-05-02 00:00:00
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2024-05-07 00:00:00
Linux kernel (OEM) vulnerabilities
2024-06-12 00:00:00
Linux kernel vulnerabilities
2024-06-07 00:00:00
osv
osv
linux-oem-6.5 vulnerabilities
2024-05-07 15:22:10
linux-nvidia-6.5 vulnerabilities
2024-06-14 15:59:05
linux-laptop vulnerabilities
2024-06-10 16:09:36
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27