### [CVE-2024-50299](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50299)
![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=1da177e4c3f41524e886b7f1b8a0c1fc7321cac2%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2.6.12%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)

### Description

In the Linux kernel, the following vulnerability has been resolved:sctp: properly validate chunk size in sctp_sf_ootb()A size validation fix similar to that in Commit 50619dbf8db7 ("sctp: addsize validation when walking chunks") is also required in sctp_sf_ootb()to address a crash reported by syzbot:  BUG: KMSAN: uninit-value in sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712  sctp_sf_ootb+0x7f5/0xce0 net/sctp/sm_statefuns.c:3712  sctp_do_sm+0x181/0x93d0 net/sctp/sm_sideeffect.c:1166  sctp_endpoint_bh_rcv+0xc38/0xf90 net/sctp/endpointola.c:407  sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88  sctp_rcv+0x3831/0x3b20 net/sctp/input.c:243  sctp4_rcv+0x42/0x50 net/sctp/protocol.c:1159  ip_protocol_deliver_rcu+0xb51/0x13d0 net/ipv4/ip_input.c:205  ip_local_deliver_finish+0x336/0x500 net/ipv4/ip_input.c:233

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/w4zu/Debian_security