๐Ÿ” CVE Alert

CVE-2024-49948

UNKNOWN 0.0

net: add more sanity checks to qdisc_pkt_len_init()

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: net: add more sanity checks to qdisc_pkt_len_init() One path takes care of SKB_GSO_DODGY, assuming skb->len is bigger than hdr_len. virtio_net_hdr_to_skb() does not fully dissect TCP headers, it only make sure it is at least 20 bytes. It is possible for an user to provide a malicious 'GSO' packet, total length of 80 bytes. - 20 bytes of IPv4 header - 60 bytes TCP header - a small gso_size like 8 virtio_net_hdr_to_skb() would declare this packet as a normal GSO packet, because it would see 40 bytes of payload, bigger than gso_size. We need to make detect this case to not underflow qdisc_skb_cb(skb)->pkt_len.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Oct 21, 2024
Last Updated May 12, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
1def9238d4aa2146924994aa4b7dc861f03b9362 < d7d1a28f5dd57b4d83def876f8d7b4403bd37df9 1def9238d4aa2146924994aa4b7dc861f03b9362 < 473426a1d53a68dd1e718e6cd00d57936993fa6c 1def9238d4aa2146924994aa4b7dc861f03b9362 < 566a931a1436d0e0ad13708ea55479b95426213c 1def9238d4aa2146924994aa4b7dc861f03b9362 < 2415f465730e48b6e38da1c7c097317bf5dd2d20 1def9238d4aa2146924994aa4b7dc861f03b9362 < 27a8fabc54d2f960d47bdfbebf2bdc6e8a92a4c4 1def9238d4aa2146924994aa4b7dc861f03b9362 < 9b0ee571d20a238a22722126abdfde61f1b2bdd0 1def9238d4aa2146924994aa4b7dc861f03b9362 < ff1c3cadcf405ab37dd91418a62a7acecf3bc5e2 1def9238d4aa2146924994aa4b7dc861f03b9362 < 1eebe602a8d8264a12e35e39d0645fa88dbbacdd 1def9238d4aa2146924994aa4b7dc861f03b9362 < ab9a9a9e9647392a19e7a885b08000e89c86b535
Linux / Linux
3.9

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/d7d1a28f5dd57b4d83def876f8d7b4403bd37df9 git.kernel.org: https://git.kernel.org/stable/c/473426a1d53a68dd1e718e6cd00d57936993fa6c git.kernel.org: https://git.kernel.org/stable/c/566a931a1436d0e0ad13708ea55479b95426213c git.kernel.org: https://git.kernel.org/stable/c/2415f465730e48b6e38da1c7c097317bf5dd2d20 git.kernel.org: https://git.kernel.org/stable/c/27a8fabc54d2f960d47bdfbebf2bdc6e8a92a4c4 git.kernel.org: https://git.kernel.org/stable/c/9b0ee571d20a238a22722126abdfde61f1b2bdd0 git.kernel.org: https://git.kernel.org/stable/c/ff1c3cadcf405ab37dd91418a62a7acecf3bc5e2 git.kernel.org: https://git.kernel.org/stable/c/1eebe602a8d8264a12e35e39d0645fa88dbbacdd git.kernel.org: https://git.kernel.org/stable/c/ab9a9a9e9647392a19e7a885b08000e89c86b535 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-398330.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-265688.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-355557.html