Lucene search
K

44 matches found

OSV
OSV
added 2024/02/21 2:59 p.m.9 views

CVE-2024-26582 net: tls: fix use-after-free with partial reads and async decrypt

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix use-after-free with partial reads and async decrypt tlsdecryptsg doesn't take a reference on the pages from clearskb, so the putpage in tlsdecryptdone releases them, and we trigger a use-after-free in processrxlist...

7.8CVSS6AI score0.00254EPSS
Exploits0References8
OSV
OSV
added 2024/01/17 4:15 p.m.6 views

UBUNTU-CVE-2024-0646

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.7AI score0.00308EPSS
Exploits0References17
Vulnrichment
Vulnrichment
added 2023/03/15 12:0 a.m.12 views

CVE-2023-28466

dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NULL pointer dereference...

6.8AI score0.0027EPSS
Exploits0References3
Filippo.io
Filippo.io
added 2017/09/06 8:7 p.m.21 views

Playing with kernel TLS in Linux 4.13 and Go

Linux 4.13 introduces support for nothing less than... TLS! The 1600 LoC patch allows userspace to pass the kernel the encryption keys for an established connection, making encryption happen transparently inside the kernel. The only ciphersuite supported is AES-128-GCM as per RFC 5288, meaning it...

7.3AI score
Exploits0
Rows per page
Query Builder