CVE-2019-10639

Name of the Vulnerable Software and Affected Versions Linux kernel versions 4.1 through 5.0.7

Description The issue is related to the lack of protection for internal data in the Linux kernel's net hash mix function. This can be exploited by a remote attacker to disclose protected information. Specifically, it allows for the extraction of the KASLR kernel image offset using IP ID values produced by the kernel for connection-less protocols like UDP and ICMP. An attacker can force a target device to send traffic to attacker-controlled IP addresses, obtaining hash collisions and thereby extracting the hashing key, which contains enough bits from a kernel address to expose the kernel image offset. This attack can be carried out remotely, for example, by forcing a DNS server to send UDP traffic or by using WebRTC or gQUIC to force UDP traffic from a client target that visits an attacker's web page.

Recommendations For Linux kernel versions 4.1 through 5.0.7, update to version 5.0.8 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.