cancel
Showing results for 
Search instead for 
Did you mean: 
SamPirok
Community Manager Community Manager
Community Manager

Summary

In the Linux kernel's XFRM ESP-in-TCP subsystem, unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged binaries and gain root privileges.

Products not listed in the Impact Details section have not been evaluated.  Furthermore, products that have exceeded any software maintenance time periods are also not evaluated and will not be published.  Please consult End of Sale and End of Service Life - Extreme Networks for the EOL notices related to the product under question.

 

Products Potentially Affected

OS/Product

Exposure

TPVM (EXOS, VOSS)

Yes

TPVM (SLX-OS, OS ONE)

Yes

 

Repair Recommendations

  • TPVM (EXOS, VOSS):
    • Fixed in 32.7.4.15 or later.
  • TPVM (SLX-OS, OS ONE):
    • Fixed in 4.7.17 or later.

Please see the full security advisory here for more details and future updates. 

GTM-P2G8KFN