kernel: tls: wait for pending async decryptions if tls_strp_msg_hold fails

A vulnerability was found in tlsdecryptsg in net/tls/tlssw.c in networking subsystem in the Linux Kernel.In this flaw, If it fails to clone of the input skb to hold the reference to the memory it uses may lead a use-after-free...

PT-2023-8408

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality. This issue arises when a user calls a function splice with a ktls socket as the...

The vulnerability of the `scatterwalk_copychunks()` function in the `net/tls/tls_sw.c` module of the Linux kernel’s cryptographic subsystem allows a attacker to induce a service failure or gain enhanced privileges.

The vulnerability of the scatterwalkcopychunks function in the net/tls/tlssw.c module of the Linux kernel’s cryptographic subsystem is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to trigger a service failure or increase their privileges...

GSD-2022-1004629 net/tls: fix tls_sk_proto_close executed repeatedly

net/tls: fix tlsskprotoclose executed repeatedly This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.127 by commit...