Security Advisory

CVE-2024-41044

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-29 14:32:02

Last updated 2026-05-11 20:25:06

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ppp: reject claimed-as-LCP but actually malformed packets Since ppp_async_encode() assumes valid LCP packets (with code from 1 to 7 inclusive), add ppp_check_packet() to ensure that LCP packet has an actual body beyond PPP_LCP header bytes, and reject claimed-as-LCP but actually malformed data otherwise.

← Browse all CVEs View on cve.org ↗