CVE-2024-53122: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust

Published Dec 2, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

mptcp: cope racing subflow creation in mptcprcvspaceadjust

Additional active subflows - i.e. created by the in kernel path manager - are included into the subflow list before starting the 3whs.

A racing recvmsg() spooling data received on an already established subflow would unconditionally call tcpcleanuprbuf() on all the current subflows, potentially hitting a divide by zero error on the newly created ones.

Explicitly check that the subflow is in a suitable state before invoking tcpcleanuprbuf().

Other sources

This CVE was automatically created from a reference found in an email or other text. If you are reading this, then this CVE entry is probably erroneous, since this text should be replaced by the official CVE description automatically.

Launchpad

Affected Software

14 affected componentsFixes available
Linux Linux kernel>=5.10<6.1.119
Linux Linux kernel>=6.2<6.6.63
Linux Linux kernel>=6.7<6.11.10
Linux Linux kernel=6.12-rc1
Linux Linux kernel=6.12-rc2
Linux Linux kernel=6.12-rc3
Linux Linux kernel=6.12-rc4
Linux Linux kernel=6.12-rc5
Linux Linux kernel=6.12-rc6
Linux Linux kernel=6.12-rc7
debian/linux<=5.10.223-1, <=5.10.234-1
6.1.129-16.1.135-16.12.25-16.12.27-1
debian/linux-6.1
6.1.129-1~deb11u1
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance - Identity Manager virtual appliance component<=ISVG 10.0.2

Remediation

Patch Available

https://git.kernel.org/stable/c/24995851d58c4a205ad0ffa7b2f21e479a9c8527

Patch Available

https://git.kernel.org/stable/c/aad6412c63baa39dd813e81f16a14d976b3de2e8

Patch Available

https://git.kernel.org/stable/c/ce7356ae35943cc6494cc692e62d51a734062b7d

Patch Available

https://git.kernel.org/stable/c/ff825ab2f455299c0c7287550915a8878e2a66e0

Event History

Dec 2, 2024
CVE Published
via MITRE·01:44 PM
Data Sourced
via MITRE·01:44 PM
Description
Data Sourced
via Red Hat·02:02 PM
DescriptionSeverityAffected Software
Data Sourced
via NVD·02:15 PM
RemedyDescriptionSeverityWeaknessAffected Software
Feb 24, 2025
Data Sourced
via Launchpad·12:54 AM
Description
Apr 29, 2025
Data Sourced
via Ubuntu·01:09 AM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-53122?

CVE-2024-53122 has been classified with a moderate severity level due to potential impacts on network stability.

2

How do I fix CVE-2024-53122?

To address CVE-2024-53122, update the Linux kernel to version 6.1.119 or later, or apply the relevant patches provided by your distribution.

3

Which versions of the Linux kernel are affected by CVE-2024-53122?

CVE-2024-53122 affects Linux kernel versions between 5.10 and 6.11.10, as well as specific 6.12 release candidates.

4

What areas of the Linux kernel are impacted by CVE-2024-53122?

CVE-2024-53122 impacts the multipath TCP implementation, specifically related to subflow creation.

5

Is CVE-2024-53122 exploitable remotely?

Yes, CVE-2024-53122 could potentially be exploited remotely, which raises concerns for systems exposed to untrusted networks.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203