Add CVE-2024-26585

author: Salvatore Bonaccorso <carnil@debian.org> 2024-02-21 17:42:31 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-02-21 17:42:31 +0100
commit: 629065b328f7d144ae51df17a86584fa1f915c17 (patch)
tree: 648027e7aa54add19ca811cc2801a66db9b00566 /active/CVE-2024-26585
parent: e442c62c3e38428e385a7e680b2f1d1d277edb18 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/active/CVE-2024-26585 b/active/CVE-2024-26585
new file mode 100644
index 00000000..dea4980e
--- /dev/null
+++ b/active/CVE-2024-26585
@@ -0,0 +1,14 @@
+Description: tls: fix race between tx work scheduling and socket close
+References:
+ carnil> Introduced with a42055e8d2c3 ("net/tls: Add support for async
+ carnil> encryption of records for performance") in 4.20-rc1.
+Notes:
+Bugs:
+upstream: released (6.8-rc5) [e01e3934a1b2d122919f73bc6ddbe1cdafc4bbdb]
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-02-21 17:42:31 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-02-21 17:42:31 +0100
commit	629065b328f7d144ae51df17a86584fa1f915c17 (patch)
tree	648027e7aa54add19ca811cc2801a66db9b00566 /active/CVE-2024-26585
parent	e442c62c3e38428e385a7e680b2f1d1d277edb18 (diff)