CVE-2024-0646 | Linux Kernel TLS /net/tls/tls_sw.c tls_sw_sendmsg_splice out-of-bounds write

Inserito da Angelo Barbosa | Gen 17, 2024 | CVE

A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function tls_sw_sendmsg_splice of the file /net/tls/tls_sw.c of the component TLS Handler. The manipulation leads to out-of-bounds write.

This vulnerability is known as CVE-2024-0646. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-0646 | Linux Kernel TLS /net/tls/tls_sw.c tls_sw_sendmsg_splice out-of-bounds write

Post correlati

CVE-2024-30534 | typps Calendarista Basic Edition Plugin up to 3.0.5 on WordPress authorization

CVE-2024-1733 | Word Replacer Pro Plugin up to 1.0 on WordPress authorization

CVE-2023-6408 | Schneider Electric Modicon M340 CPU improper enforcement of message integrity (SEVD-2024-044-01)

CVE-2021-47168 | Linux Kernel up to 5.12.8 NFS filelayout_decode_layout memory corruption