CVE-2024-26584

CVSS v3.1 5.5 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 40

NVD Status Modified

In the Linux kernel, the following vulnerability has been resolved:

net: tls: handle backlogging of crypto requests

Since we're setting the CRYPTO_TFM_REQ_MAY_BACKLOG flag on our
requests to the crypto API, crypto_aead_{encrypt,decrypt} can return
-EBUSY instead of -EINPROGRESS in valid situations. For example, when
the cryptd queue for AESNI is full (easy to trigger with an
artificially low cryptd.cryptd_max_cpu_qlen), requests will be enqueued
to the backlog but still processed. In that case, the async callback
will also be called twice: first with err == -EINPROGRESS, which it
seems we can just ignore, then with err == 0.

Compared to Sabrina's original patch this version uses the new
tls_*crypt_async_wait() helpers and converts the EBUSY to
EINPROGRESS to avoid having to modify all the error handling
paths. The handling is identical.

Weaknesses

CWE-755: Improper Handling of Exceptional Conditions

CVE Status: PUBLISHED
NVD Status: Modified
CNA: kernel.org
Published Date: 2024-02-21 15:15:09
(6 months ago)
Updated Date: 2024-05-25 15:15:08
(3 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel from 4.16.0 version and prior 6.1.84 version	cpe:2.3:o:linux:linux_kernel	>= 4.16.0	< 6.1.84
Linux Kernel from 6.2.0 version and prior 6.6.18 version	cpe:2.3:o:linux:linux_kernel	>= 6.2.0	< 6.6.18
Linux Kernel from 6.7.0 version and prior 6.7.6 version	cpe:2.3:o:linux:linux_kernel	>= 6.7.0	< 6.7.6