PT-2022-2509 · Linux+9 · Linux Kernel+9

Amit Klein

Published

2022-05-02

Updated

2023-10-01

CVE-2022-1012

CVSS v2.0

8.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a memory leak problem in the TCP source port generation algorithm, which may allow an attacker to leak information and potentially cause a denial of service problem. This is due to the small table perturb size in the net/ipv4/tcp.c component. The exploitation of this issue may enable a remote attacker to predict the number of an outgoing TCP connection port.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Leak

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-200

Related Identifiers

ALSA-2022:5249

ALSA-2022:5267

ALSA-2022:5819

ALSA-2022:5834

ALT-PU-2022-1929

ALT-PU-2022-2050

ALT-PU-2022-2052

ALT-PU-2022-2054

ALT-PU-2022-2131

ALT-PU-2022-2152

ALT-PU-2022-2155

ALT-PU-2022-2158

ALT-PU-2023-1684

ALT-PU-2023-1741

ALT-PU-2023-1814

ALT-PU-2023-4894

AZL-10468

BDU:2022-02919

CESA-2022_5819

CESA-2022_5834

CVE-2022-1012

DLA-3065-1

DSA-5161-1

DSA-5173-1

MGASA-2022-0194

MGASA-2022-0195

OESA-2022-1691

OPENSUSE-SU-2022:2549-1

OPENSUSE-SU-2022_2172-1

OPENSUSE-SU-2022_2422-1

OPENSUSE-SU-2022_2520-1

OPENSUSE-SU-2022_2549-1

OPENSUSE-SU-2022_2615-1

OPENSUSE-SU-2022_3408-1

RHSA-2022:5214

RHSA-2022:5220

RHSA-2022:5224

RHSA-2022:5249

RHSA-2022:5267

RHSA-2022:5626

RHSA-2022:5633

RHSA-2022:5636

RHSA-2022:5819

RHSA-2022:5834

RHSA-2022:6551

RHSA-2022_5249

RHSA-2022_5267

RHSA-2022_5819

RHSA-2022_5834

RLSA-2022:5819

RLSA-2022:5834

SUSE-SU-2022:2172-1

SUSE-SU-2022:2377-1

SUSE-SU-2022:2382-1

SUSE-SU-2022:2424-1

SUSE-SU-2022:2424-2

SUSE-SU-2022:2520-1

SUSE-SU-2022:2549-1

SUSE-SU-2022:2615-1

SUSE-SU-2022:2629-1

SUSE-SU-2022:3408-1

SUSE-SU-2022:3450-1

USN-5471-1

USN-5594-1

USN-5599-1

USN-5602-1

USN-5616-1

USN-5622-1

USN-5623-1

USN-5630-1

USN-5639-1

USN-5647-1

USN-5654-1

USN-5660-1

USN-5669-1

USN-5669-2

USN-5678-1

USN-5679-1

USN-5684-1

USN-5687-1

USN-5695-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Linux Kernel

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2022-2509 · Linux+9 · Linux Kernel+9

CVE-2022-1012

Weakness Enumeration

Related Identifiers

Affected Products

References · 598