Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2022/10/18 8:15 a.m.6 views

kernel: information leak in the IPv4 implementation

An information leak flaw was found in the Linux kernel’s IPv4 implementation in the iprtinit in net/ipv4/route.c function. The use of a small hash table in IP ID generation allows a remote attacker to reveal sensitive information...

3.5CVSS6.7AI score0.00368EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/05/10 1:43 p.m.3 views

kernel: information leak in the IPv6 implementation

An information leak flaw was found in the Linux kernel’s IPv6 implementation in the ipv6selectident in net/ipv6/outputcore.c function. The use of a small hash table in IP ID generation allows a remote attacker to reveal sensitive information...

7.5CVSS6.7AI score0.03585EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2020/04/28 3:41 p.m.4 views

Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR

A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a nethashmix function. A remote user could observe this IP ID field to extract the kernel address bits used to derive its value, which may result in leaking the hash key and...

7.5CVSS7.2AI score0.03252EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/05 8:44 p.m.2 views

Kernel: net: weak IP ID generation leads to remote device tracking

A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a nethashmix function. A remote user could observe a weak IP ID generation in this field to track Linux devices...

6.5CVSS7.2AI score0.02571EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2006/08/10 7:31 p.m.5 views

security flaw

The ippushpendingframes function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan nmap -sI attack, which bypasses intended protections against such attacks...

5CVSS5.9AI score0.03426EPSS
Exploits0References4
Rows per page
Query Builder