What the vulnerability does

01Description

A NULL pointer dereference issue was discovered in the Linux kernel in the MPTCP protocol when traversing the subflow list at disconnect time. A local user could use this flaw to potentially crash the system causing a denial of service.

Key dates

02Disclosure timeline

November 28, 2022 CVE published
April 14, 2025 Record updated