Name of the Vulnerable Software and Affected Versions:

Linux kernel (affected versions not specified)

Description:

The Linux kernel contains an issue related to Transport Layer Security (TLS) where asynchronous decryption request handling is not separated from synchronous handling. This complexity introduces potential issues in managing decryption requests, particularly when asynchronous operations are not in use. The handling is simplified without asynchronous operations, eliminating the need for reference counting and relying on completion events for results. A previous fix addressed a potential Use-After-Free (UAF) condition.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.