AI Score
Confidence
Low
EPSS
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
tls: get psock ref after taking rxlock to avoid leak
At the start of tls_sw_recvmsg, we take a reference on the psock, and
then call tls_rx_reader_lock. If that fails, we return directly
without releasing the reference.
Instead of adding a new label, just take the reference after locking
has succeeded, since we don’t need it before.
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "4cbc325ed6b4",
"lessThan": "30fabe50a7ac",
"versionType": "git"
},
{
"status": "affected",
"version": "4cbc325ed6b4",
"lessThan": "f1b7f14130d7",
"versionType": "git"
},
{
"status": "affected",
"version": "4cbc325ed6b4",
"lessThan": "b565d294e3d5",
"versionType": "git"
},
{
"status": "affected",
"version": "4cbc325ed6b4",
"lessThan": "417e91e85609",
"versionType": "git"
}
],
"programFiles": [
"net/tls/tls_sw.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "6.0"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "6.0",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "6.1.85",
"versionType": "custom",
"lessThanOrEqual": "6.1.*"
},
{
"status": "unaffected",
"version": "6.6.26",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.8.5",
"versionType": "custom",
"lessThanOrEqual": "6.8.*"
},
{
"status": "unaffected",
"version": "6.9",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"net/tls/tls_sw.c"
],
"defaultStatus": "affected"
}
]