« List of all CVEs

CVE-2024-0646

Kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

Published: 1/17/2024 Last updated: 11/6/2025 Reserved: 1/17/2024

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 7 High CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (94)

Product Vendor Version
Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat 3.3.1SQ
Red Hat Enterprise Linux 8 Red Hat 7 for 32-bit Systems Service Pack 1
V3.0
QCA6696
Red Hat Enterprise Linux 7 Red Hat All versions 16.20.06 and prior
Red Hat Enterprise Linux 6 Red Hat QCN5052
Red Hat Enterprise Linux 8.2 Telecommunications Update Service Red Hat QCA8084
Red Hat Enterprise Linux 6 Red Hat SonicOS 6.5.1.11-4n and earlier
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat V3.0.2.1
Red Hat Enterprise Linux 8 Red Hat 15.2(2)S0a
Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat 15.2(4)S1
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat and V3.0.3
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Red Hat 1.10
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat 15.2(4)S4
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat 1.9
Red Hat Enterprise Linux 9.0 Extended Update Support Red Hat WSA8810
Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat 15.2(4)S6
Red Hat Enterprise Linux 9 Red Hat < 2.5.6
Red Hat Enterprise Linux 9 Red Hat QCA9888
Red Hat Enterprise Linux 9 Red Hat SW5100P
Red Hat Enterprise Linux 9.0 Extended Update Support Red Hat 15.2(4)S2
Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat V3.0.2
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat 15.2(4)S5
Red Hat Enterprise Linux 7 Red Hat 1.18
Red Hat Enterprise Linux 9 Red Hat SW5100
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Red Hat QCM6125
Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat < 6.3.9600.22417
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Snapdragon 855+/860 Mobile Platform (SM8150-AC)
Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Snapdragon 855 Mobile Platform
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat 12.1.2
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat SA8155P
Red Hat Enterprise Linux 8.2 Telecommunications Update Service Red Hat SA8150P
Red Hat Enterprise Linux 8 Red Hat < 6.1.7601.27566
Red Hat Enterprise Linux 8 Red Hat QCA8082
Red Hat Enterprise Linux 8.2 Telecommunications Update Service Red Hat Android SoC
Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat QCA8085
Red Hat Enterprise Linux 9.0 Extended Update Support Red Hat QCA9889
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat QCA9984
Red Hat Enterprise Linux 7 Red Hat 15.3(1)T2
Red Hat Enterprise Linux 9 Red Hat QCN5054
Red Hat Enterprise Linux 8.2 Telecommunications Update Service Red Hat 3.4.1SQ
Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat < 3.1.12
Red Hat Enterprise Linux 9.0 Extended Update Support Red Hat 1.8
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat n/a
Red Hat Enterprise Linux 7 Red Hat 15.1(3)SVD2
Red Hat Enterprise Linux 9 Red Hat 3.16.4bS
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat WSA8835
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat 3.5.0SQ
Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat 15.4(3)S8
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat 15.2(4)S3
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat 15.3(3)M5
Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat <= 3.0.3
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat 15.2(2)S0c
Red Hat Enterprise Linux 9.0 Extended Update Support Red Hat 3.16.1S
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat QCA8386
Red Hat Enterprise Linux 8 Red Hat Adobe Acrobat Reader 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, 11.0.22 and earlier versions
Red Hat Enterprise Linux 8 Red Hat n/a
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat 3.7.1E
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat QCA8337
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat 3.7.5E
RHOL-5.8-RHEL-9 Red Hat 15.2(4)S3a
RHOL-5.8-RHEL-9 Red Hat 3.16.2S
RHOL-5.8-RHEL-9 Red Hat QCM6490
RHOL-5.8-RHEL-9 Red Hat 1.11
RHOL-5.8-RHEL-9 Red Hat 3.16.2aS
RHOL-5.8-RHEL-9 Red Hat 1.0.0
RHOL-5.8-RHEL-9 Red Hat 15.3(3)M9
RHOL-5.8-RHEL-9 Red Hat 15.2(4)S4a
RHOL-5.8-RHEL-9 Red Hat n/a
RHOL-5.8-RHEL-9 Red Hat QCN5021
RHOL-5.8-RHEL-9 Red Hat 1.0.1
RHOL-5.8-RHEL-9 Red Hat 3.16.0cS
RHOL-5.8-RHEL-9 Red Hat 15.2(4)S7
RHOL-5.8-RHEL-9 Red Hat 1.13
RHOL-5.8-RHEL-9 Red Hat < 1.2.0
RHOL-5.8-RHEL-9 Red Hat 3.16.3S
RHOL-5.8-RHEL-9 Red Hat QCN5022
RHOL-5.8-RHEL-9 Red Hat 1.14
RHOL-5.8-RHEL-9 Red Hat SonicOS 6.5.4.7-79n and earlier
RHOL-5.8-RHEL-9 Red Hat 15.3(1)T
RHOL-5.8-RHEL-9 Red Hat 1.15
RHOL-5.8-RHEL-9 Red Hat QCN5024
RHOL-5.8-RHEL-9 Red Hat 3.16.3aS
RHOL-5.8-RHEL-9 Red Hat 13.0.0-13.1.1.1
RHOL-5.8-RHEL-9 Red Hat 1.16
RHOL-5.8-RHEL-9 Red Hat 15.1(3)SVD
RHOL-5.8-RHEL-9 Red Hat 15.3(2)T
RHOL-5.8-RHEL-9 Red Hat SonicOS 5.9.1.13-5n and earlier
RHOL-5.8-RHEL-9 Red Hat < 1.1.0
RHOL-5.8-RHEL-9 Red Hat 12.1.0-12.1.3.6
RHOL-5.8-RHEL-9 Red Hat < 4.2.2
RHOL-5.8-RHEL-9 Red Hat 15.3(1)T1
RHOL-5.8-RHEL-9 Red Hat 15.1(3)SVD1

References (102)