ALAS2KERNEL-5.15-2023-016 --- kernelID: oval:org.secpod.oval:def:1701274 | Date: (C)2023-05-08 (M)2024-04-25 |
Class: PATCH | Family: unix |
A flaw was found in the Linux kernel Traffic Control subsystem. Using a specific networking configuration a local unprivileged user could trigger a CPU soft lockup when the transport protocol in use does a retransmission, resulting in a denial of service condition. RESERVEDNOTE: https://www.openwall.com/lists/oss-security/2022/12/14/3NOTE: https://lore.kernel.org/all/1670885411-10060-1-git-send-email-dai.ngo@oracle.com/ do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition
Product: |
kernel |
perf |
python-perf |
bpftool |