ACK: [SRU][F/J][PATCH 0/2] CVE-2024-26800
Mehmet Basaran
mehmet.basaran at canonical.com
Mon Sep 23 14:39:18 UTC 2024
Acked-by: Mehmet Basaran <mehmet.basaran at canonical.com>
-------------- next part --------------
Juerg Haefliger <juerg.haefliger at canonical.com> writes:
> https://ubuntu.com/security/CVE-2024-26800
>
> [ Impact ]
>
> Potential use-after-free in async kTLS decryption.
>
>
> [ Test Case ]
>
> Using tcrypt/pcrypt, verified that modified code is called when running the tls kernel
> selftests and that no new failures are introduced.
>
>
> [ Where Problems Could Occur ]
>
> Limited to async kernel-space TLS (kTLS) decryption (which requires special crypto acceleration
> hardware).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 873 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240923/19d33f50/attachment-0001.sig>
More information about the kernel-team
mailing list