CVE-2024-45009

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Linux kernel's handling of the add addr accepted counter in the mptcp module. When a 'subflow' endpoint is removed, it triggers a RM ADDR and then the subflow closure. However, before the patch, the other peer would try to decrement the add addr accepted counter upon receiving the RM ADDR, which is incorrect because the attached subflows were not created upon the reception of an ADD ADDR. The solution is to decrement the counter only if the attached subflow was an MP JOIN to a remote id that was not 0, and initiated by the host receiving the RM ADDR. The WARN ON ONCE warning was added to help find the bug when running the "remove single subflow" subtest from the mptcp join.sh selftest.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.