Lucene search

K
redhatcveRedhat.comRH:CVE-2019-10639
HistoryApr 04, 2020 - 11:18 p.m.

CVE-2019-10639

2020-04-0423:18:25
redhat.com
access.redhat.com
41

EPSS

0.004

Percentile

73.6%

A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a net_hash_mix() function. A remote user could observe this IP ID field to extract the kernel address bits used to derive its value, which may result in leaking the hash key and potentially defeating KASLR.