CVE-2024-50169

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-50169
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50169.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-50169
Downstream
Related
Published
2024-11-07T09:31:45Z
Modified
2025-10-17T15:52:40.198916Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
vsock: Update rx_bytes on read_skb()
Details

In the Linux kernel, the following vulnerability has been resolved:

vsock: Update rxbytes on readskb()

Make sure virtiotransportincrxpkt() and virtiotransportdecrxpkt() calls are balanced (i.e. virtiovsocksock::rxbytes doesn't lie) after vsocktransport::read_skb().

While here, also inform the peer that we've freed up space and it has more credit.

Failing to update rxbytes after packet is dequeued leads to a warning on SOCKSTREAM recv():

[ 233.396654] rxqueue is empty, but rxbytes is non-zero [ 233.396702] WARNING: CPU: 11 PID: 40601 at net/vmwvsock/virtiotransport_common.c:589

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
634f1a7110b439c65fd8a809171c1d2d28bcea6f
Fixed
66cd51de31c682a311c2fa25c580b7ea45859dd9
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
634f1a7110b439c65fd8a809171c1d2d28bcea6f
Fixed
e5ca2b98090b4bb1c393088c724af6c37812a829
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
634f1a7110b439c65fd8a809171c1d2d28bcea6f
Fixed
3543152f2d330141d9394d28855cb90b860091d2

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "id": "CVE-2024-50169-1dab9887",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "target": {
            "file": "net/vmw_vsock/virtio_transport_common.c",
            "function": "virtio_transport_read_skb"
        },
        "digest": {
            "function_hash": "98709288425379966519791874406429962978",
            "length": 359.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e5ca2b98090b4bb1c393088c724af6c37812a829"
    },
    {
        "id": "CVE-2024-50169-2bce2c89",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "target": {
            "file": "net/vmw_vsock/virtio_transport_common.c"
        },
        "digest": {
            "line_hashes": [
                "17111823117103106599556439912978253853",
                "182714638452018909864508228903092923507",
                "334787454263211125594842859055287989567",
                "295846157761978742174139443680682343960",
                "272551710766901816400539100815749014577",
                "24644557810011264240558118944676166990",
                "266140634898495359981799870435126705527",
                "98673179908521592942248051420211461898",
                "202469562281555526430178502893129445135",
                "186010804158284879869700032442818955026",
                "277358122460163670350765831124831385697"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@66cd51de31c682a311c2fa25c580b7ea45859dd9"
    },
    {
        "id": "CVE-2024-50169-324b1bd4",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "target": {
            "file": "net/vmw_vsock/virtio_transport_common.c",
            "function": "virtio_transport_read_skb"
        },
        "digest": {
            "function_hash": "98709288425379966519791874406429962978",
            "length": 359.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3543152f2d330141d9394d28855cb90b860091d2"
    },
    {
        "id": "CVE-2024-50169-36bc8074",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "target": {
            "file": "net/vmw_vsock/virtio_transport_common.c",
            "function": "virtio_transport_read_skb"
        },
        "digest": {
            "function_hash": "98709288425379966519791874406429962978",
            "length": 359.0
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@66cd51de31c682a311c2fa25c580b7ea45859dd9"
    },
    {
        "id": "CVE-2024-50169-37f43cd4",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "target": {
            "file": "net/vmw_vsock/virtio_transport_common.c"
        },
        "digest": {
            "line_hashes": [
                "17111823117103106599556439912978253853",
                "182714638452018909864508228903092923507",
                "334787454263211125594842859055287989567",
                "295846157761978742174139443680682343960",
                "272551710766901816400539100815749014577",
                "24644557810011264240558118944676166990",
                "266140634898495359981799870435126705527",
                "98673179908521592942248051420211461898",
                "202469562281555526430178502893129445135",
                "186010804158284879869700032442818955026",
                "277358122460163670350765831124831385697"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3543152f2d330141d9394d28855cb90b860091d2"
    },
    {
        "id": "CVE-2024-50169-b6138a15",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "target": {
            "file": "net/vmw_vsock/virtio_transport_common.c"
        },
        "digest": {
            "line_hashes": [
                "17111823117103106599556439912978253853",
                "182714638452018909864508228903092923507",
                "334787454263211125594842859055287989567",
                "295846157761978742174139443680682343960",
                "272551710766901816400539100815749014577",
                "24644557810011264240558118944676166990",
                "266140634898495359981799870435126705527",
                "98673179908521592942248051420211461898",
                "202469562281555526430178502893129445135",
                "186010804158284879869700032442818955026",
                "277358122460163670350765831124831385697"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e5ca2b98090b4bb1c393088c724af6c37812a829"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.4.0
Fixed
6.6.59
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.11.6