In the Linux kernel, the following vulnerability has been resolved:
mptcp: really cope with fastopen race
Fastopen and PM-trigger subflow shutdown can race, as reported by
syzkaller.
In my first attempt to close such race, I missed the fact that
the subflow status can change again before the subflow_state_change
callback is invoked.
Address the issue additionally copying with all the states directly
reachable from TCP_FIN_WAIT1.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-04-03T14:55:11.054Z
Updated: 2024-08-02T00:14:12.552Z
Reserved: 2024-02-19T14:20:24.158Z
Link: CVE-2024-26708
Vulnrichment
Updated: 2024-05-23T19:01:21.844Z
NVD
Status : Awaiting Analysis
Published: 2024-04-03T15:15:53.390
Modified: 2024-04-03T17:24:18.150
Link: CVE-2024-26708
Redhat