CVE-2023-1075

2023-02-2800:00:00

ubuntu.com

linux

kernel

tls

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.0004 Low

EPSS

Percentile

9.0%

JSON

A flaw was found in the Linux Kernel. The tls_is_tx_ready() incorrectly
checks for list emptiness, potentially accessing a type confused entry to
the list_head, leaking the last byte of the confused field that overlaps
with rec->tx_ready.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchlinux< 5.4.0-149.166UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-72.79UNKNOWN
ubuntu22.10noarchlinux< 5.19.0-42.43UNKNOWN
ubuntu22.04noarchlinux-allwinner-5.19< 5.19.0-1012.12~22.04.1UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1102.110UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1036.40UNKNOWN
ubuntu22.10noarchlinux-aws< 5.19.0-1025.26UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1036.40~20.04.1UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1103.111~18.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1108.114UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	linux	< 5.4.0-149.166	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-72.79	UNKNOWN
ubuntu	22.10	noarch	linux	< 5.19.0-42.43	UNKNOWN
ubuntu	22.04	noarch	linux-allwinner-5.19	< 5.19.0-1012.12~22.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1102.110	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1036.40	UNKNOWN
ubuntu	22.10	noarch	linux-aws	< 5.19.0-1025.26	UNKNOWN
ubuntu	20.04	noarch	linux-aws-5.15	< 5.15.0-1036.40~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< 5.4.0-1103.111~18.04.1	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1108.114	UNKNOWN