active/CVE-2023-28466


1
2
3
4
5
6
7
8
9
10
11
12
13
14

Description: net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
References:
Notes:
 carnil> source-wise affecting all suites, but we enable CONFIG_TLS only
 carnil> since bookworm.
Bugs:
upstream: released (6.3-rc2) [49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962]
6.1-upstream-stable: released (6.1.20) [14c17c673e1bba08032d245d5fb025d1cbfee123]
5.10-upstream-stable: released (5.10.177) [1fde5782f187daa05919d2bebd872df8ebcc00d1]
4.19-upstream-stable: needed
sid: released (6.1.20-1)
6.1-bookworm-security: N/A "Fixed before branch point"
5.10-bullseye-security: released (5.10.178-1)
4.19-buster-security: needed