7 matches found
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mptcp: Use OPTIONMPTCPMPJSYNACK in subflowfinishconnect subflowfinishconnect uses four fields backup, joinid, thmac, none that may contain garbage unless OPTIONMPTCPMPJSYNACK has been set in mptcpparseoption...
CVE-2025-40133
In the Linux kernel, the following vulnerability has been resolved: mptcp: Use skdstget and dstdevrcu in mptcpactiveenable. mptcpactiveenable is called from subflowfinishconnect, which is icsk-icskafops-skrxdstset and it's not always under RCU. Using skdstgetsk-dev could trigger UAF. Let's use...
The vulnerability of the mptcp component in Linux kernel, which allows a hacker to cause a service failure
The vulnerability of the mptcp component in the Linux operating system’s kernel is related to errors in resource management within the subflowfinishconnect function. Exploiting this vulnerability can allow a attacker to cause a service failure...
kernel: mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()
CVE-2024-35840 is a vulnerability in the Linux kernel’s Multipath TCP MPTCP implementation. It occurs because the subflowfinishconnect function may handle uninitialized data in certain fields if a specific MPTCP option OPTIONMPTCPMPJSYNACK is not correctly set during option parsing. This could le...
SUSE CVE-2024-35840
In the Linux kernel, the following vulnerability has been resolved: mptcp: use OPTIONMPTCPMPJSYNACK in subflowfinishconnect subflowfinishconnect uses four fields backup, joinid, thmac, none that may contain garbage unless OPTIONMPTCPMPJSYNACK has been set in mptcpparseoption...
DEBIAN-CVE-2024-35840
In the Linux kernel, the following vulnerability has been resolved: mptcp: use OPTIONMPTCPMPJSYNACK in subflowfinishconnect subflowfinishconnect uses four fields backup, joinid, thmac, none that may contain garbage unless OPTIONMPTCPMPJSYNACK has been set in mptcpparseoption...
UBUNTU-CVE-2024-35840
In the Linux kernel, the following vulnerability has been resolved: mptcp: use OPTIONMPTCPMPJSYNACK in subflowfinishconnect subflowfinishconnect uses four fields backup, joinid, thmac, none that may contain garbage unless OPTIONMPTCPMPJSYNACK has been set in mptcpparseoption...