Acknowledged
Created: Nov 12, 2025
Updated: Nov 25, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]tls: wait for pending async decryptions if tls_strp_msg_hold fails[EOL][EOL]Async decryption calls tls_strp_msg_hold to create a clone of the[EOL]input skb to hold references to the memory it uses. If we fail to[EOL]allocate that clone, proceeding with async decryption can lead to[EOL]various issues (UAF on the skb, writing into userspace memory after[EOL]the recv() call has returned).[EOL][EOL]In this case, wait for all pending decryption requests.
