3 matches found
SUSE SLES15 Security Update : kernel (Live Patch 30 for SLE 15 SP2) (SUSE-SU-2023:2695-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2695-1 advisory. This update for the Linux Kernel 5.3.18-15020024129 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed...
CVE-2023-28466
Summary: CVE-2023-28466 affects the Linux kernel up to 6.2.6, where do_tls_getsockopt in net/tls/tls_main.c can race due to a missing lock_sock, causing a use-after-free or NULL pointer dereference. The condition is a local, kernel‑level issue with potential crashes or memory corruption as descri...
CVE-2023-28466
dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NULL pointer dereference...