CVE-2024-50169

MEDIUM 5.5

vsock: Update rx_bytes on read_skb()

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: vsock: Update rx_bytes on read_skb() Make sure virtio_transport_inc_rx_pkt() and virtio_transport_dec_rx_pkt() calls are balanced (i.e. virtio_vsock_sock::rx_bytes doesn't lie) after vsock_transport::read_skb(). While here, also inform the peer that we've freed up space and it has more credit. Failing to update rx_bytes after packet is dequeued leads to a warning on SOCK_STREAM recv(): [ 233.396654] rx_queue is empty, but rx_bytes is non-zero [ 233.396702] WARNING: CPU: 11 PID: 40601 at net/vmw_vsock/virtio_transport_common.c:589

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Nov 7, 2024
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

634f1a7110b439c65fd8a809171c1d2d28bcea6f < 66cd51de31c682a311c2fa25c580b7ea45859dd9 634f1a7110b439c65fd8a809171c1d2d28bcea6f < e5ca2b98090b4bb1c393088c724af6c37812a829 634f1a7110b439c65fd8a809171c1d2d28bcea6f < 3543152f2d330141d9394d28855cb90b860091d2

Linux / Linux

6.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/66cd51de31c682a311c2fa25c580b7ea45859dd9 git.kernel.org: https://git.kernel.org/stable/c/e5ca2b98090b4bb1c393088c724af6c37812a829 git.kernel.org: https://git.kernel.org/stable/c/3543152f2d330141d9394d28855cb90b860091d2