Security Advisory

CVE-2024-0646

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-17 15:16:45

Last updated 2025-11-06 20:51:54

Assigner redhat

State PUBLISHED

Description

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system.

← Browse all CVEs View on cve.org ↗