CVE-2024-50251
Published: Nov 9, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_payload: sanitize offset and length before calling skb_checksum() If access to offset + length is larger than the skbuff length, then skb_checksum() triggers BUG_ON(). skb_checksum() internally subtracts the length parameter while iterating over skbuff, BUG_ON(len) at the end of it checks that the expected length to be included in the checksum calculation is fully consumed.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 7ec3f7b47b8d9ad7ba425726f2c58f9ddce040df - < a661ed364ae6ae88c2fafa9ddc27df1af2a73701affected 7ec3f7b47b8d9ad7ba425726f2c58f9ddce040df - < ac7df3fc80fc82bcc3b1e8f6ebc0d2c435d0c534affected 7ec3f7b47b8d9ad7ba425726f2c58f9ddce040df - < e3e608cbad376674d19a71ccd0d41804d9393f02affected 7ec3f7b47b8d9ad7ba425726f2c58f9ddce040df - < b1d2de8a669fa14c499a385e056944d5352b3b40affected 7ec3f7b47b8d9ad7ba425726f2c58f9ddce040df - < d3217323525f7596427124359e76ea0d8fcc9874+3 more versions |
Linux | Linux | affected 4.5unaffected 0 - < 4.5unaffected 4.19.323 - <= 4.19.*unaffected 5.4.285 - <= 5.4.*unaffected 5.10.229 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now