An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Fixes

Solution

No solution given by the vendor.


Workaround

To mitigate this issue, prevent module tls from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to prevent it from loading automatically.

History

Tue, 17 Jun 2025 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 25 Nov 2024 11:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1314

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

Wed, 16 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1314

Sat, 14 Sep 2024 00:45:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-09-25T19:18:58.398Z

Reserved: 2024-01-17T13:11:12.669Z

Link: CVE-2024-0646

cve-icon Vulnrichment

Updated: 2024-08-01T18:11:35.718Z

cve-icon NVD

Status : Modified

Published: 2024-01-17T16:15:47.190

Modified: 2024-11-25T10:44:03.660

Link: CVE-2024-0646

cve-icon Redhat

Severity : Important

Publid Date: 2023-12-07T06:30:00Z

Links: CVE-2024-0646 - Bugzilla

cve-icon OpenCVE Enrichment

No data.