CVE-2022-50070

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc6-g2eae0556bb9d

Description A vulnerability in the Linux kernel has been resolved, related to the MultiPath TCP (MPTCP) protocol. The issue occurs when an MPTCP-level (re)transmit races with mptcp close() and the packet scheduler checks the subflow state before acquiring the socket lock, allowing data to be queued on closed subflows. The root cause is a race condition between the MPTCP (re)transmit and the mptcp close() function.

Recommendations For Linux kernel versions prior to 5.19.0-rc6-g2eae0556bb9d, update to a newer version that includes the fix for this issue. As a temporary workaround, consider disabling the MPTCP protocol until a patch is available. Restrict access to the vulnerable MPTCP module to minimize the risk of exploitation. Avoid using the MPTCP protocol in the affected Linux kernel versions until the issue is resolved.