Описание
ELSA-2023-3847: kernel security, bug fix, and enhancement update (MODERATE)
[4.18.0-477.15.1_8.OL8]
- net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() (Hangyu Hua) {CVE-2023-28466}
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
bpftool
4.18.0-477.15.1.el8_8
kernel-cross-headers
4.18.0-477.15.1.el8_8
kernel-headers
4.18.0-477.15.1.el8_8
kernel-tools
4.18.0-477.15.1.el8_8
kernel-tools-libs
4.18.0-477.15.1.el8_8
kernel-tools-libs-devel
4.18.0-477.15.1.el8_8
perf
4.18.0-477.15.1.el8_8
python3-perf
4.18.0-477.15.1.el8_8
Oracle Linux x86_64
bpftool
4.18.0-477.15.1.el8_8
kernel
4.18.0-477.15.1.el8_8
kernel-abi-stablelists
4.18.0-477.15.1.el8_8
kernel-core
4.18.0-477.15.1.el8_8
kernel-cross-headers
4.18.0-477.15.1.el8_8
kernel-debug
4.18.0-477.15.1.el8_8
kernel-debug-core
4.18.0-477.15.1.el8_8
kernel-debug-devel
4.18.0-477.15.1.el8_8
kernel-debug-modules
4.18.0-477.15.1.el8_8
kernel-debug-modules-extra
4.18.0-477.15.1.el8_8
kernel-devel
4.18.0-477.15.1.el8_8
kernel-doc
4.18.0-477.15.1.el8_8
kernel-headers
4.18.0-477.15.1.el8_8
kernel-modules
4.18.0-477.15.1.el8_8
kernel-modules-extra
4.18.0-477.15.1.el8_8
kernel-tools
4.18.0-477.15.1.el8_8
kernel-tools-libs
4.18.0-477.15.1.el8_8
kernel-tools-libs-devel
4.18.0-477.15.1.el8_8
perf
4.18.0-477.15.1.el8_8
python3-perf
4.18.0-477.15.1.el8_8
Связанные CVE
Связанные уязвимости
do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition (with a resultant use-after-free or NULL pointer dereference).
do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition (with a resultant use-after-free or NULL pointer dereference).
do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition (with a resultant use-after-free or NULL pointer dereference).
do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6. ...