CVE-2024-53122
Published: Dec 2, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust Additional active subflows - i.e. created by the in kernel path manager - are included into the subflow list before starting the 3whs. A racing recvmsg() spooling data received on an already established subflow would unconditionally call tcp_cleanup_rbuf() on all the current subflows, potentially hitting a divide by zero error on the newly created ones. Explicitly check that the subflow is in a suitable state before invoking tcp_cleanup_rbuf().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c76c6956566f974bac2470bd72fc22fb923e04a1 - < 0a9a182ea5c7bb0374e527130fd85024ace7279baffected c76c6956566f974bac2470bd72fc22fb923e04a1 - < 24995851d58c4a205ad0ffa7b2f21e479a9c8527affected c76c6956566f974bac2470bd72fc22fb923e04a1 - < ff825ab2f455299c0c7287550915a8878e2a66e0affected c76c6956566f974bac2470bd72fc22fb923e04a1 - < aad6412c63baa39dd813e81f16a14d976b3de2e8affected c76c6956566f974bac2470bd72fc22fb923e04a1 - < ce7356ae35943cc6494cc692e62d51a734062b7d |
Linux | Linux | affected 5.10unaffected 0 - < 5.10unaffected 5.15.174 - <= 5.15.*unaffected 6.1.119 - <= 6.1.*unaffected 6.6.63 - <= 6.6.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now