An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system.
| Version | Score | Severity | Vector String |
|---|---|---|---|
| 3.1 | 7 | High | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Product | Vendor | Version |
|---|---|---|
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | Red Hat | 0.3.0 |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | Red Hat | 0.3.2 |
| Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | Red Hat | 0.3.3 |
| <6.8 | ||
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | Red Hat | 0.3.1 |
| Red Hat Enterprise Linux 8 | Red Hat | <6 |