PT-2024-34124 · Linux+8 · Linux Kernel+8

Syzbot

·

Published

2024-10-29

·

Updated

2026-02-24

·

CVE-2024-50299

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: A size validation fix is required in the sctp sf ootb() function to address a crash reported by syzbot. The issue is related to the sctp protocol and involves a failure to properly validate chunk size, which can lead to a crash. The crash is reported with the error message BUG: KMSAN: uninit-value in sctp sf ootb+0x7f5/0xce0 net/sctp/sm statefuns.c:3712. The issue is addressed by adding size validation when walking chunks, similar to the fix in Commit 50619dbf8db7.
Recommendations: As a temporary workaround, consider disabling the sctp protocol until a patch is available. Restrict access to the sctp sf ootb() function to minimize the risk of exploitation. Avoid using the sctp protocol in sensitive environments until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of Uninitialized Resource

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-908CWE-20

Related Identifiers

ALT-PU-2024-16040
ALT-PU-2024-17099
ALT-PU-2024-17211
ALT-PU-2024-17254
ALT-PU-2024-17891
ALT-PU-2025-12647
AZL-53567
AZL-53762
BDU:2025-03348
CVE-2024-50299
DLA-4008-1
DLA-4075-1
DSA-5818-1
INFSA-2025_6966
LSN-0116-1
OESA-2024-2492
OESA-2024-2518
OESA-2024-2519
OESA-2024-2520
OESA-2024-2521
OPENSUSE-SU-2025_0428-1
OPENSUSE-SU-2025_0499-1
OPENSUSE-SU-2025_0556-1
OPENSUSE-SU-2025_0557-1
OPENSUSE-SU-2025_0577-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2025:0236-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:0428-1
SUSE-SU-2025:0499-1
SUSE-SU-2025:0556-1
SUSE-SU-2025:0557-1
SUSE-SU-2025:0577-1
SUSE-SU-2025:0577-2
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025_0236-1
SUSE-SU-2025_0428-1
SUSE-SU-2025_0499-1
SUSE-SU-2025_0557-1
SUSE-SU-2025_0577-1
SUSE-SU-2025_0577-2
USN-7276-1
USN-7277-1
USN-7288-1
USN-7288-2
USN-7289-1
USN-7289-2
USN-7289-3
USN-7289-4
USN-7291-1
USN-7293-1
USN-7294-1
USN-7294-2
USN-7294-3
USN-7294-4
USN-7295-1
USN-7305-1
USN-7308-1
USN-7310-1
USN-7331-1
USN-7388-1
USN-7389-1
USN-7390-1
USN-7393-1
USN-7401-1
USN-7413-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7458-1
USN-7468-1
USN-7523-1
USN-7524-1
USN-7539-1
USN-7540-1
USN-7853-1
USN-7853-2
USN-7853-3
USN-7854-1
USN-7863-1
USN-7865-1
USN-7875-1
USN-7937-1
USN-8061-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu