CVE-2022-1012

Sažetak

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2064604
https://security.netapp.com/advisory/ntap-20221020-0006/
https://lore.kernel.org/lkml/20220427065233.2075-1-w%401wt.eu/T/

CVSS

Base:	8.2
Impact:	4.2
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	-

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Zadnje važnije ažuriranje

07-11-2023 - 03:41

Objavljeno

05-08-2022 - 16:15