VYPR
Medium severity6.2NVD Advisory· Published Nov 9, 2024· Updated May 12, 2026

CVE-2024-50251

CVE-2024-50251

Description

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_payload: sanitize offset and length before calling skb_checksum()

If access to offset + length is larger than the skbuff length, then skb_checksum() triggers BUG_ON().

skb_checksum() internally subtracts the length parameter while iterating over skbuff, BUG_ON(len) at the end of it checks that the expected length to be included in the checksum calculation is fully consumed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

150

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.