PT-2020-6614 · Linux+8 · Linux Kernel+8

Published

2020-05-11

·

Updated

2023-11-09

·

CVE-2020-36516

CVSS v3.1

5.9

Medium

VectorAV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.11
Description The issue is related to the mixed IPID assignment method with the hash-based IPID assignment policy in the Linux kernel, allowing an off-path attacker to inject data into a victim's TCP session or terminate that session. This can also lead to a man-in-the-middle attack due to insufficient cleaning of special elements in the output used by the incoming component.
Recommendations For Linux kernel versions prior to 5.16.11, update to a version 5.16.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the TCP session to minimize the risk of exploitation. Avoid using the vulnerable IPID assignment method until the issue is resolved.

Fix

Special Elements Injection

Use of a Broken Cryptographic Algorithm

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-327CWE-287

Related Identifiers

ALSA-2022:7444
ALSA-2022:7683
ALSA-2022:7933
ALSA-2022:8267
ALT-PU-2020-1944
ALT-PU-2020-1950
ALT-PU-2020-2153
ALT-PU-2020-2155
ALT-PU-2020-2158
ALT-PU-2020-2164
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
ALT-PU-2022-1724
BDU:2022-01501
CESA-2022_7444
CESA-2022_7683
CVE-2020-36516
OPENSUSE-SU-2022_2875-1
OPENSUSE-SU-2022_3288-1
OPENSUSE-SU-2022_3293-1
OPENSUSE-SU-2022_3408-1
OPENSUSE-SU-2022_3609-1
OPENSUSE-SU-2022_4617-1
RHSA-2022:7444
RHSA-2022:7683
RHSA-2022:7933
RHSA-2022:8267
RHSA-2022_7444
RHSA-2022_7683
RHSA-2022_7933
RHSA-2022_8267
RHSA-2024:2674
RLSA-2022:7444
RLSA-2022:7683
SUSE-SU-2022:2875-1
SUSE-SU-2022:2875-2
SUSE-SU-2022:2892-1
SUSE-SU-2022:2892-2
SUSE-SU-2022:2910-1
SUSE-SU-2022:3061-1
SUSE-SU-2022:3064-1
SUSE-SU-2022:3072-1
SUSE-SU-2022:3088-1
SUSE-SU-2022:3108-1
SUSE-SU-2022:3123-1
SUSE-SU-2022:3263-1
SUSE-SU-2022:3265-1
SUSE-SU-2022:3274-1
SUSE-SU-2022:3282-1
SUSE-SU-2022:3288-1
SUSE-SU-2022:3291-1
SUSE-SU-2022:3293-1
SUSE-SU-2022:3294-1
SUSE-SU-2022:3408-1
SUSE-SU-2022:3450-1
SUSE-SU-2022:3609-1
SUSE-SU-2022:4617-1
SUSE-SU-2022_3064-1
SUSE-SU-2022_3088-1
USN-6001-1
USN-6013-1
USN-6014-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu