THREATOPS
THREAT OPSThreat News › [NVD] CVE-2025-21707 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: mptcp: consolidate suboption status MPTCP maintains the received sub-options status is the bitmask carrying the received suboptions and in several bitfields carrying per suboption additional info. Zeroing the

[NVD] CVE-2025-21707 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: mptcp: consolidate suboption status MPTCP maintains the received sub-options status is the bitmask carrying the received suboptions and in several bitfields carrying per suboption additional info. Zeroing the

lownvdPublished 2025-02-27

CVE-2025-21707 CVSS: 5.5 MEDIUM Published: 2025-02-27T02:15:14.347

In the Linux kernel, the following vulnerability has been resolved:

mptcp: consolidate suboption status

MPTCP maintains the received sub-options status is the bitmask carrying the received suboptions and in several bitfields carrying per suboption additional info.

Zeroing the bitmask before parsing is not enough to ensure a con

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-21707