CVE-2022-50783 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: mptcp: use proper req destructor for IPv6 Before, only the destructor from TCP request sock in IPv4 was called even if the subflow was IPv6. It is important to use the right destructor to avoid memory leaks with some advanced IPv6 features, e.g. when the request socks contain specific IPv6 options.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/092953f3c4cd65f88b27b87a922f6c725f34ee04
https://git.kernel.org/stable/c/1922ea6b0ae2ea0c9a09be0eafafe1cd1069d259
https://git.kernel.org/stable/c/6eb02c596ec02e5897ae377e065cb7df55337a96
https://git.kernel.org/stable/c/bd5dc96fea4edd16d2e22f41b4dd50a4cfbeb919
https://git.kernel.org/stable/c/d3295fee3c756ece33ac0d935e172e68c0a4161b

History

Wed, 24 Dec 2025 13:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: mptcp: use proper req destructor for IPv6 Before, only the destructor from TCP request sock in IPv4 was called even if the subflow was IPv6. It is important to use the right destructor to avoid memory leaks with some advanced IPv6 features, e.g. when the request socks contain specific IPv6 options.
Title		mptcp: use proper req destructor for IPv6
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/092953f3c4cd65f88b27b87a922f6c725f34ee04 https://git.kernel.org/stable/c/1922ea6b0ae2ea0c9a09be0eafafe1cd1069d259 https://git.kernel.org/stable/c/6eb02c596ec02e5897ae377e065cb7df55337a96 https://git.kernel.org/stable/c/bd5dc96fea4edd16d2e22f41b4dd50a4cfbeb919 https://git.kernel.org/stable/c/d3295fee3c756ece33ac0d935e172e68c0a4161b

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-12-24T13:06:10.602Z

Updated: 2025-12-24T13:06:10.602Z

Reserved: 2025-12-24T13:02:21.548Z

Link: CVE-2022-50783

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-12-24T13:16:05.153

Modified: 2025-12-24T13:16:05.153

Link: CVE-2022-50783

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2022-50783", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-12-24T13:02:21.548Z", "datePublished": "2025-12-24T13:06:10.602Z", "dateUpdated": "2025-12-24T13:06:10.602Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-12-24T13:06:10.602Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: use proper req destructor for IPv6\n\nBefore, only the destructor from TCP request sock in IPv4 was called\neven if the subflow was IPv6.\n\nIt is important to use the right destructor to avoid memory leaks with\nsome advanced IPv6 features, e.g. when the request socks contain\nspecific IPv6 options."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/mptcp/subflow.c"], "versions": [{"version": "79c0949e9a09f6a14a6dd18dc8396029423f9b68", "lessThan": "6eb02c596ec02e5897ae377e065cb7df55337a96", "status": "affected", "versionType": "git"}, {"version": "79c0949e9a09f6a14a6dd18dc8396029423f9b68", "lessThan": "bd5dc96fea4edd16d2e22f41b4dd50a4cfbeb919", "status": "affected", "versionType": "git"}, {"version": "79c0949e9a09f6a14a6dd18dc8396029423f9b68", "lessThan": "092953f3c4cd65f88b27b87a922f6c725f34ee04", "status": "affected", "versionType": "git"}, {"version": "79c0949e9a09f6a14a6dd18dc8396029423f9b68", "lessThan": "1922ea6b0ae2ea0c9a09be0eafafe1cd1069d259", "status": "affected", "versionType": "git"}, {"version": "79c0949e9a09f6a14a6dd18dc8396029423f9b68", "lessThan": "d3295fee3c756ece33ac0d935e172e68c0a4161b", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/mptcp/subflow.c"], "versions": [{"version": "5.6", "status": "affected"}, {"version": "0", "lessThan": "5.6", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.163", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.87", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.0.18", "lessThanOrEqual": "6.0.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.4", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.2", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.6", "versionEndExcluding": "5.10.163"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.6", "versionEndExcluding": "5.15.87"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.6", "versionEndExcluding": "6.0.18"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.6", "versionEndExcluding": "6.1.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.6", "versionEndExcluding": "6.2"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/6eb02c596ec02e5897ae377e065cb7df55337a96"}, {"url": "https://git.kernel.org/stable/c/bd5dc96fea4edd16d2e22f41b4dd50a4cfbeb919"}, {"url": "https://git.kernel.org/stable/c/092953f3c4cd65f88b27b87a922f6c725f34ee04"}, {"url": "https://git.kernel.org/stable/c/1922ea6b0ae2ea0c9a09be0eafafe1cd1069d259"}, {"url": "https://git.kernel.org/stable/c/d3295fee3c756ece33ac0d935e172e68c0a4161b"}], "title": "mptcp: use proper req destructor for IPv6", "x_generator": {"engine": "bippy-1.2.0"}}}}