What the vulnerability does

01Description

A data race flaw was found in the Linux kernel, between where con is allocated and con->sock is set. This issue leads to a NULL pointer dereference when accessing con->sock->sk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel.

Key dates

02Disclosure timeline

April 19, 2023 CVE published
March 19, 2025 Record updated