NACK/Cmt: [SRU][F/J][PATCH 0/2] CVE-2024-26800
Thibault Ferrante
thibault.ferrante at canonical.com
Mon Sep 23 12:28:29 UTC 2024
On 05-09-2024 16:26, Juerg Haefliger wrote:
> https://ubuntu.com/security/CVE-2024-26800
>
> [ Impact ]
>
> Potential use-after-free in async kTLS decryption.
>
>
> [ Test Case ]
>
> Using tcrypt/pcrypt, verified that modified code is called when running the tls kernel
> selftests and that no new failures are introduced.
>
>
> [ Where Problems Could Occur ]
>
> Limited to async kernel-space TLS (kTLS) decryption (which requires special crypto acceleration
> hardware).
>
Both patch `tls: separate no-async decryption request handling from async` should be backported as there is context changes.
Everything is good except that.
--
Thibault
More information about the kernel-team
mailing list