Scott

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A security issue was identified in NFS over TLS within the `tls alert recv` function. The vulnerability stems from an incorrect assumption regarding the validity of data within the message header's iterator's kvec. The issue is addressed by reworking the setup and usage of control messages within `sock recvmsg()`. Specifically, the kTLS layer may encounter TLS control messages and return an error, which is then handled by NFS to read in the control message, such as a TLS alert. The patch reverts the iterator before calling into the `tls alert recv` function to prevent issues with the kvec pointer advancement during the copy process. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Qualcomm products with Android releases from CAF using the Linux kernel (affected versions not specified) **Description** The issue is caused by a type downcast that allows a value to improperly pass validation, potentially leading to an out of bounds write. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.