An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a remote attacker to send a crafted TCP packet, triggering a heap-based buffer overflow that results in kmalloc data being printed and potentially leaked to the kernel ring buffer (dmesg).
Workaround:
The product reads data past the end, or before the beginning, of the intended buffer.
Link | Tags |
---|---|
https://access.redhat.com/errata/RHSA-2024:2394 | vendor advisory |
https://access.redhat.com/errata/RHSA-2024:2950 | vendor advisory |
https://access.redhat.com/errata/RHSA-2024:3138 | vendor advisory |
https://access.redhat.com/security/cve/CVE-2023-6121 | vdb entry third party advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2250043 | issue tracking third party advisory |
https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html |