vulnerability

Debian: CVE-2021-47244: linux -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:N/I:N/A:C)	05/21/2024	07/30/2024	02/20/2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:C)

Published

05/21/2024

Added

07/30/2024

Modified

02/20/2025

Description

In the Linux kernel, the following vulnerability has been resolved:

mptcp: Fix out of bounds when parsing TCP options

The TCP option parser in mptcp (mptcp_get_options) could read one byte
out of bounds. When the length is 1, the execution flow gets into the
loop, reads one byte of the opcode, and if the opcode is neither
TCPOPT_EOL nor TCPOPT_NOP, it reads one more byte, which exceeds the
length of 1.

This fix is inspired by commit 9609dad263f8 ("ipv4: tcp_input: fix stack
out of bounds when parsing TCP options.").

Solution

debian-upgrade-linux

References

CVE-2021-47244
https://attackerkb.com/topics/CVE-2021-47244

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today