First published 8 March 2024

CVSS 3.1: 8.4 (High)

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

A security vulnerability has been found in the Linux Kernel used in IGEL OS. This affects the following IGEL products:

  • IGEL OS 12

Details

A security issue has been discovered in TLS subsystem of the Linux Kernel. Under certain circumstances, a use-after-free can be triggered (CVE-2024-26582). An attacker could use this to trigger a denial of service or code execution, so the severity of this vulnerability is rated as high.

Update Instructions

  • OS 12: IGEL is preparing a fixed OS 12 base system version.

References