Security Advisory

CVE-2024-35840

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-17 14:27:31

Last updated 2026-05-11 20:12:09

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect() subflow_finish_connect() uses four fields (backup, join_id, thmac, none) that may contain garbage unless OPTION_MPTCP_MPJ_SYNACK has been set in mptcp_parse_option()

← Browse all CVEs View on cve.org ↗