VDB
CVE-2019-18282
CVE-2019-18282
PUBLISHED
The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and because jhash (instead of siphash) is used. The hashrnd value remains the same starting from boot time, and can be inferred by an attacker. This affects net/core/flow_dissector.c and related code.
EPSS 0.68% · 71.9th percentile
Risk Scores
EPSS Score
0.68%
71.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:20.04:LTS | linux-raspi2 | 5.4.0-1006.6, 5.3.0-1017.19, 5.3.0-1014.16 |
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-azure-fips | 0, 4.15.0-1002.2 |
| Ubuntu:Pro:FIPS:16.04:LTS | linux-fips | 4.4.0-1001.1, 4.4.0-1019.24, 4.4.0-1025.30 |
| Ubuntu:20.04:LTS | linux-gke | 5.4.0-1037.39, 5.4.0-1036.38, 5.4.0-1035.37 |
| Ubuntu:16.04:LTS | linux-snapdragon | 4.4.0-1088.93, 4.4.0-1100.105, 4.4.0-1122.128 |
| Ubuntu:Pro:FIPS:18.04:LTS | linux-aws-fips | 0, 4.15.0-2000.4 |
| Ubuntu:18.04:LTS | linux-gke-4.15 | 4.15.0-1044.46, 4.15.0-1045.48, 4.15.0-1048.51 |
| Ubuntu:Pro:14.04:LTS | linux-lts-xenial | 4.4.0-14.30~14.04.2, *, * |
| Ubuntu:18.04:LTS | linux-oem-osp1 | 5.0.0-1027.31, 5.0.0-1028.32, 5.0.0-1010.11 |
| Ubuntu:18.04:LTS | linux-azure-5.3 | 0, 5.3.0-1007.8~18.04.1 |
| Ubuntu:20.04:LTS | linux-azure-fde | *, 5.4.0-1064.67+cvm1.1, 5.4.0-1068.71+cvm1.1 |
| Ubuntu:22.04:LTS | linux-intel-iot-realtime | 0, 5.15.0-1073.75 |
| Ubuntu:16.04:LTS | linux-aws-hwe | 4.15.0-1050.52~16.04.1, 4.15.0-1051.53~16.04.1, 4.15.0-1052.54~16.04.1 |
| Ubuntu:24.04:LTS | linux-raspi-realtime | 0, 6.8.0-2019.20 |
| Ubuntu:16.04:LTS | linux | 4.4.0-169.198, 0, 4.2.0-17.21 |
| Ubuntu:22.04:LTS | linux-realtime | 5.15.0-1032.35, 0 |
| Ubuntu:22.04:LTS | linux-riscv | 5.15.0-1027.31, 5.15.0-1026.30, 5.15.0-1022.26 |
| Ubuntu:18.04:LTS | linux-oem | 4.15.0-1024.29, 4.15.0-1021.24, 4.15.0-1017.20 |
| Ubuntu:Pro:14.04:LTS | linux-azure | *, 0, 4.15.0-1023.24~14.04.1 |
| Ubuntu:16.04:LTS | linux-hwe-edge | 4.13.0-25.29~16.04.2, 4.8.0-28.30~16.04.1, 4.8.0-30.32~16.04.1 |
…and 27 more
Timeline
- Jan 16, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 25, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 27, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 2, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2019-18282 third-party-advisory
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.10 third-party-advisory
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=55667441c84fa5e0911a0aac44fb059c15ba6da2 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2019-18282 third-party-advisory
- Multiples vulnérabilités dans les produits Juniper advisory