CVE-2024-50185

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-50185
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50185.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-50185
Downstream
Related
Published
2024-11-08T05:38:26.359Z
Modified
2026-03-20T12:39:37.092923Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
mptcp: handle consistently DSS corruption
Details

In the Linux kernel, the following vulnerability has been resolved:

mptcp: handle consistently DSS corruption

Bugged peer implementation can send corrupted DSS options, consistently hitting a few warning in the data path. Use DEBUG_NET assertions, to avoid the splat on some builds and handle consistently the error, dumping related MIBs and performing fallback and/or reset according to the subflow type.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50185.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6771bfd9ee2460c13e38c0cd46a3afb5404ae716
Fixed
fde99e972b8f88cebe619241d7aa43d288ef666a
Fixed
12c1676d598e3b8dd92a033b623b792cc2ea1ec5
Fixed
35668f8ec84f6c944676e48ecc6bbc5fc8e6fe25
Fixed
b8be15d1ae7ea4eedd547c3b3141f592fbddcd30
Fixed
8bfd391bde685df7289b928ce8876a3583be4bfb
Fixed
e32d262c89e2b22cb0640223f953b548617ed8a6

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50185.json"