CVE-2021-45485

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.13.3

Description The issue is related to the implementation of the IPv6 protocol in the Linux kernel, which contains defects and risks associated with the use of certain cryptographic algorithms. This can lead to an information leak. Specifically, in the IPv6 implementation, the net/ipv6/output core.c file has an issue due to the use of a hash table that does not properly account for the ability of IPv6-based attackers to choose from many IPv6 source addresses, allowing a remote attacker to potentially gain unauthorized access to protected information.

Recommendations For Linux kernel versions prior to 5.13.3, update to version 5.13.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the net/ipv6/output core.c module to minimize the risk of exploitation.