CVE-2022-50865

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> tcp: fix a signed-integer-overflow bug in tcp_add_backlog()<br /> <br /> The type of sk_rcvbuf and sk_sndbuf in struct sock is int, and<br /> in tcp_add_backlog(), the variable limit is caculated by adding<br /> sk_rcvbuf, sk_sndbuf and 64 * 1024, it may exceed the max value<br /> of int and overflow. This patch reduces the limit budget by<br /> halving the sndbuf to solve this issue since ACK packets are much<br /> smaller than the payload.