[SRU][F/J/K][PATCH 0/1] CVE-2023-1075
Yuxuan Luo
yuxuan.luo at canonical.com
Thu Mar 30 21:19:31 UTC 2023
[Impact]
It was discovered that the TLS subsystem in the Linux kernel contained a
type confusion vulnerability in some situations. A local attacker could use
this to cause a denial of service (system crash) or possibly expose
sensitive information.
[Backport]
The commit 587903142308 (“tls: create an internal header”) splitted the
include/net/tls.h and moved the vulnerable `tls_is_tx_ready()`. Though not
having this commit causes cherry-pick conflict, it is not necessary to backport
this commit. Instead, it is possible to modify the `is_tx_ready()` directly.
[Test]
Compile and boot tested.
[Potential Regression]
Very low.
Pietro Borrello (1):
net/tls: tls_is_tx_ready() checked list_entry
include/net/tls.h | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
--
2.34.1
More information about the kernel-team
mailing list