References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Known Affected Software Configurations Switch to CPE 2.2

Change History

OR
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to (excluding) 6.11.3

NIST AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

NIST NVD-CWE-noinfo

https://git.kernel.org/stable/c/24256415d18695b46da06c93135f5b51c548b950 No Types Assigned

https://git.kernel.org/stable/c/24256415d18695b46da06c93135f5b51c548b950 Patch

https://git.kernel.org/stable/c/f7415e60c25a6108cd7955a20b2e66b6251ffe02 No Types Assigned

https://git.kernel.org/stable/c/f7415e60c25a6108cd7955a20b2e66b6251ffe02 Patch

In the Linux kernel, the following vulnerability has been resolved:

l2tp: prevent possible tunnel refcount underflow

When a session is created, it sets a backpointer to its tunnel. When
the session refcount drops to 0, l2tp_session_free drops the tunnel
refcount if session->tunnel is non-NULL. However, session->tunnel is
set in l2tp_session_create, before the tunnel refcount is incremented
by l2tp_session_register, which leaves a small window where
session->tunnel is non-NULL when the tunnel r

kernel.org https://git.kernel.org/stable/c/24256415d18695b46da06c93135f5b51c548b950 [No types assigned]

kernel.org https://git.kernel.org/stable/c/f7415e60c25a6108cd7955a20b2e66b6251ffe02 [No types assigned]