Volerion logoVolerion
Volerion logoVolerion

Linux Kernel TLS Record Handling Vulnerability in Stable Versions

Vulnerability

A vulnerability in the Linux kernel's TLS implementation has been addressed. The issue arose in the TLS record handling within the 'recv' function. When a non-DATA record was processed, it could merge with another record of the same type still in the queue, leading to improper handling of the data. This vulnerability affects several versions of the Linux kernel stable tree.

Impact

The vulnerability could lead to incorrect processing of TLS records, potentially allowing for data corruption or mismanagement of the TLS state.

Reproduction

The vulnerability can be reproduced by sending a non-DATA TLS record followed by a DATA record of the same type. The 'recv' function will improperly merge the records, demonstrating the flaw in handling different record types.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been fixed.

Added: Aug 22, 2025, 2:27 PM
Updated: Aug 22, 2025, 2:27 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.7
remediation
7.7
relevance
0.4
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.