2 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003435)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003435 advisory. The skbflowdissect function in net/core/flowdissector.c in the Linux kernel before 4.3 does not ensure that nproto, ipproto, and thoff are initialized, which allows...
kernel: The flow_dissector feature allows device tracking
A device tracking vulnerability was found in the flowdissector feature in the Linux kernel. This flaw occurs because the auto flowlabel of the UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and jhash instead of siphash is used. The hashmd value remains the same starting from boot ti...