Lucene search
K

52 matches found

OSV
OSV
added 2025/06/18 11:15 a.m.2 views

UBUNTU-CVE-2022-50070

In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...

7.8CVSS5.9AI score0.00211EPSS
Exploits0References13
CVE
CVE
added 2025/06/18 11:2 a.m.70 views

CVE-2022-50070

CVE-2022-50070 affects the Linux kernel and relates to the mptcp datapath: a transmit could race with mptcp_close(), causing a closed subflow (ssk) to be re-transmitted. The root cause is a subflow-state check performed before acquiring the socket lock, enabling re-transmission on an already clos...

7.8CVSS6.3AI score0.00211EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/06/18 11:2 a.m.7 views

CVE-2022-50070 mptcp: do not queue data on closed subflows

In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...

0.00211EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/06/18 11:2 a.m.4 views

CVE-2022-50070

In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...

7.8CVSS5.4AI score0.00211EPSS
Exploits0
OSV
OSV
added 2025/06/18 11:2 a.m.3 views

CVE-2022-50070 mptcp: do not queue data on closed subflows

In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...

7.8CVSS6.4AI score0.00211EPSS
Exploits0References6
OSV
OSV
added 2025/05/02 4:15 p.m.3 views

DEBIAN-CVE-2023-53072

In the Linux kernel, the following vulnerability has been resolved: mptcp: use the workqueue to destroy unaccepted sockets Christoph reported a UaF at token lookup time after having refactored the passive socket initialization part: BUG: KASAN: use-after-free in tokenbucketbusy+0x253/0x260 Read o...

7.8CVSS5.8AI score0.00168EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 4:15 p.m.2 views

UBUNTU-CVE-2023-53072

In the Linux kernel, the following vulnerability has been resolved: mptcp: use the workqueue to destroy unaccepted sockets Christoph reported a UaF at token lookup time after having refactored the passive socket initialization part: BUG: KASAN: use-after-free in tokenbucketbusy+0x253/0x260 Read o...

7.8CVSS6.3AI score0.00168EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/02/27 3:3 a.m.2 views

SUSE CVE-2022-49669

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race on unaccepted mptcp sockets When the listener socket owning the relevant request is closed, it frees the unaccepted subflows and that causes later deletion of the paired MPTCP sockets. The mptcp socket's worker ca...

5.5CVSS5.3AI score0.00234EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 7:1 a.m.4 views

DEBIAN-CVE-2022-49669

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race on unaccepted mptcp sockets When the listener socket owning the relevant request is closed, it frees the unaccepted subflows and that causes later deletion of the paired MPTCP sockets. The mptcp socket's worker ca...

7.8CVSS5.4AI score0.00234EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

UBUNTU-CVE-2022-49669

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race on unaccepted mptcp sockets When the listener socket owning the relevant request is closed, it frees the unaccepted subflows and that causes later deletion of the paired MPTCP sockets. The mptcp socket's worker ca...

7.8CVSS6.1AI score0.00234EPSS
Exploits0References5
CVE
CVE
added 2024/12/02 1:44 p.m.208 views

CVE-2024-53122

CVE-2024-53122 affects the Linux kernel in mptcp: racing subflow creation in mptcp_rcv_space_adjust can trigger a race when handling spooled data on a subflow, potentially causing a divide-by-zero during tcp_cleanup_rbuf() on newly created subflows. The fix adds a state check to ensure the subflo...

5.5CVSS6.4AI score0.00199EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2024/10/30 1:41 a.m.3 views

kernel: mptcp: fix data re-injection from stale subflow

A flaw was found in the Linux kernel. A logical error in the Multipath TCP packet manager causes some packets intended for retransmission to be lost, resulting in a potential denial of service...

5.5CVSS6.7AI score0.00263EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/30 12:39 a.m.2 views

kernel: mptcp: fix data re-injection from stale subflow

A flaw was found in the Linux kernel. A logical error in the Multipath TCP packet manager causes some packets intended for retransmission to be lost, resulting in a potential denial of service...

5.5CVSS6.7AI score0.00263EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/30 12:15 a.m.4 views

kernel: mptcp: fix data re-injection from stale subflow

A flaw was found in the Linux kernel. A logical error in the Multipath TCP packet manager causes some packets intended for retransmission to be lost, resulting in a potential denial of service...

5.5CVSS6.7AI score0.00263EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/09/12 2:51 a.m.4 views

SUSE CVE-2024-45009

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only decrement addaddraccepted for MPJ req Adding the following warning ... WARNONONCEmsk-pm.addaddraccepted == 0 ... before decrementing the addaddraccepted counter helped to find a bug when running the "remove single...

3.3CVSS6.5AI score0.00221EPSS
Exploits0References14
OSV
OSV
added 2024/09/11 4:15 p.m.3 views

AZL-49224 CVE-2024-45009 affecting package kernel for versions less than 6.6.51.1-1

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only decrement addaddraccepted for MPJ req Adding the following warning ... WARNONONCEmsk-pm.addaddraccepted == 0 ... before decrementing the addaddraccepted counter helped to find a bug when running the "remove single...

5.5CVSS6.7AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2024/09/11 4:15 p.m.3 views

UBUNTU-CVE-2024-45010

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only mark 'subflow' endp as available Adding the following warning ... WARNONONCEmsk-pm.localaddrused == 0 ... before decrementing the localaddrused counter helped to find a bug when running the "remove single address"...

5.5CVSS6.5AI score0.0022EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2024/06/21 3:52 a.m.1 views

SUSE CVE-2021-47594

In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint the netlink PM treverses all the local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP matching...

5.5CVSS7.5AI score0.00208EPSS
Exploits0References6
OSV
OSV
added 2024/06/19 3:15 p.m.3 views

DEBIAN-CVE-2021-47594

In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint the netlink PM treverses all the local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP matching...

5.5CVSS5.3AI score0.00208EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 3:15 p.m.1 views

UBUNTU-CVE-2021-47594

In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint the netlink PM treverses all the local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP matching...

5.5CVSS5.7AI score0.00208EPSS
Exploits0References5
Rows per page
Query Builder