retired/CVE-2022-1012


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23

Description: tcp: Information leakage through limited randomness in source port selection
References:
 https://bugzilla.redhat.com/show_bug.cgi?id=2064604
Notes:
 carnil> Fixed in 5.17.9 for 5.17.y. For older series only one commit
 carnil> was applied so far (5.10.117, 4.19.244) and needs check what is
 carnil> actually needed.
 carnil> Does the backported commit help mitigating the issue? The fix
 carnil> is AFAIU not truncating to 32bit the output, but use the 64bits
 carnil> of SipHash for the port offset calculation.
 carnil> The main part seems to be b2d057560b81 ("secure_seq: use the 64
 carnil> bits of the siphash for port offset calculation") in 5.18-rc6
 carnil> which is backported to 5.10.119 as well and will as well land
 carnil> in 4.19.246.
Bugs:
upstream: released (5.18-rc6) [b2d057560b8107c633b39aabe517ff9d93f285e3, 9e9b70ae923baf2b5e8a0ea4fd0c8451801ac526, 4dfa9b438ee34caca4e6a4e5e961641807367f6f, ca7af0402550f9a0b3316d5f1c30904e42ed257d, e9261476184be1abd486c9434164b2acbe0ed6c2, 4c2c8f03a5ab7cb04ec64724d7d176d00bcc91e5, e8161345ddbb66e449abde10d2fdce93f867eba9]
5.10-upstream-stable: released (5.10.117) [d254309aab27fdcdc68e6bc9c663e51f3e7b37dc], released (5.10.119) [a5c68f457fbf52c5564ca4eea03f84776ef14e41], released (5.10.125) [dd46a868fcfdf3aac8ffb20b2321e174a0156fb2, d28e64b1c63eced06aedadcacb0be4997c10c7c1, 24b922a5da0055f1bb8b391b83e494d2e5d56508, 9429b75bc271b6f29e50dbb0ee0751800ff87dd9, 7ccb026ecb997405b59d391140c25ee347891504]
4.19-upstream-stable: released (4.19.244) [abcf4e1277d169b82dd7ee290006487ed16016ce], released (4.19.246) [695309c5c71526d32f5539f008bbf20ed2218528], released (4.19.249) [11abd17d923c041441f7346a4811735b86318773, 22788ee7230772f5040113d53fe757b682f790da, 9b8fba5d9e19548ecf7538917a04071c3c432985, 514cd2859c5017fdc487165b093b328e24afe954, 9b40c2b72362a5ea92128ca7b83307986ac6246f]
4.9-upstream-stable: released (4.9.320) [576696ed0dee677ec868960c39d96ae3b8c95a3f, 2ed413f140bbb527745e3b42550f44d07c9dfd2a, aa7722529f6d7f3be1dd7b94dcce3f2689ba9756, dd82067bd6cabbc25aa0f459e91a8e5e08fa4782, 3c78eea640f69e2198b69128173e6d65a0bcdc02, a81a6b204a303116e64e0a6288b701cbda9d4de7]
sid: released (5.17.11-1)
5.10-bullseye-security: released (5.10.120-1), released (5.10.127-1)
4.19-buster-security: released (4.19.249-1)
4.9-stretch-security: released (4.9.320-2)