[SRU][F/J][PATCH 0/2] CVE-2024-26800
Juerg Haefliger
juerg.haefliger at canonical.com
Thu Sep 5 14:26:38 UTC 2024
https://ubuntu.com/security/CVE-2024-26800
[ Impact ]
Potential use-after-free in async kTLS decryption.
[ Test Case ]
Using tcrypt/pcrypt, verified that modified code is called when running the tls kernel
selftests and that no new failures are introduced.
[ Where Problems Could Occur ]
Limited to async kernel-space TLS (kTLS) decryption (which requires special crypto acceleration
hardware).
More information about the kernel-team
mailing list