CVE-2024-46711

'localaddrused' and 'addaddraccepted' are decremented for addresses not related to the initial subflow (ID0), because the source and destination addresses of the initial subflows are known from the beginning: they don't count as "additional local address being used" or "ADD_ADDR being accepted".

It is then required not to increment them when the entrypoint used by the initial subflow is removed and re-added during a connection. Without this modification, this entrypoint cannot be removed and re-added more than once.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/cc431b3424123d84bcd7afd4de150b33f117a8ef/cves/2024/46xxx/CVE-2024-46711.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

3ad14f54bd7448384458e69f0183843f683ecce8

Fixed

c9c744666f7308a4daba520191e29d395260bcfe

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

3ad14f54bd7448384458e69f0183843f683ecce8

Fixed

53e2173172d26c0617b29dd83618b71664bed1fb

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

3ad14f54bd7448384458e69f0183843f683ecce8

Fixed

119806ae4e46cf239db8e6ad92bc2fd3daae86dc

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

3ad14f54bd7448384458e69f0183843f683ecce8

Fixed

9366922adc6a71378ca01f898c41be295309f044

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.0.0

Fixed

6.1.109

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.49

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.10.8