Security tracker / CVE-2022-50070

CVE-2022-50070

mptcp: do not queue data on closed subflows

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in d5f49190def6 ("mptcp: allow picking different xmit subflows").
 carnil> Vulnerable versions: 5.10.

Bugs

Status

Branch	Status
upstream	released (6.0-rc1) [c886d70286bf3ad411eb3d689328a67f7102c6ae]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.15-upstream-stable	N/A "Fixed before branching point"
6.14-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
5.10-upstream-stable	needed
sid	released (5.19.6-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Fixed before branching point"
5.10-bullseye-security	needed