CVE-2024-58239

Summary

In the Linux kernel, the following vulnerability has been resolved:

tls: stop recv() if initial process_rx_list gave us non-DATA

If we have a non-DATA record on the rx_list and another record of the same type still on the queue, we will end up merging them:

  • process_rx_list copies the non-DATA record
  • we start the loop and process the first available record since it's of the same type
  • we break out of the loop since the record was not DATA

Just check the record type and jump to the end in case process_rx_list did some work.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < f310143961e2d9a0479fca117ce869f8aaecc140affected
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < 31e10d6cb0c9532ff070cf50da1657c3acee9276affected
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < 4338032aa90bd1d5b33a4274e8fa8347cda5ee09affected
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < 6756168add1c6c3ef1c32c335bb843a5d1f99a75affected
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < 3b952d8fdfcf6fd8ea0b8954bc9277642cf0977faffected
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < a4ed943882a8fc057ea5a67643314245e048bbddaffected
LinuxLinux692d7b5d1f9125a1cf0595e979e3b5fb7210547e < fdfbaec5923d9359698cbb286bc0deadbb717504affected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.270 <= 5.4.*unaffected
LinuxLinux5.10.211 <= 5.10.*unaffected
LinuxLinux5.15.150 <= 5.15.*unaffected
LinuxLinux6.1.80 <= 6.1.*unaffected
LinuxLinux6.6.19 <= 6.6.*unaffected
LinuxLinux6.7.7 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

References