CVE-2022-32296 — Use of Insufficiently Random Values in Kernel

CWE-330 — Use of Insufficiently Random Values CWE-203 — Observable Discrepancy CWE-341 — Predictable from Observable State35 documents8 sources

Severity

3.3LOWNVD

OSV6.7OSV5.5OSV4.3

EPSS

0.1%

top 83.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Msrc Cbl2 Kernel 5.15.48.1-2 ON CBL Mariner 2.0 +1 more

Timeline

PublishedJun 5

Latest updateJul 13

Description

The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 ("Double-Hash Port Selection Algorithm") of RFC 6056.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages6 packages

▶NVDlinux/linux_kernel< 5.17.9

▶Debianlinux/linux_kernel< 5.10.127-1+3

▶Ubuntulinux/linux_kernel< 4.15.0-194.205+1

▶debiandebian/linux< linux 5.17.11-1 (bookworm)

▶msrcmsrc/cbl2_kernel_5.15.48.1-2_on_cbl_mariner_2.0

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

linux-gcp vulnerabilities↗2022-10-21

▶

OSV

linux-azure-4.15 vulnerabilities↗2022-10-18

▶

OSV

linux-azure vulnerabilities↗2022-10-17

▶

OSV

linux-aws, linux-gcp-4.15 vulnerabilities↗2022-10-13

▶

OSV

linux-aws-hwe vulnerabilities↗2022-10-13

▶

📋Vendor Advisories

CISA ICS

Siemens SIMATIC MV500 Devices↗2023-07-13

▶

CISA ICS

Siemens SIMATIC S7-1500 TM MFP Linux Kernel↗2023-06-15

▶

Ubuntu

Linux kernel (GCP) vulnerabilities↗2022-10-21

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2022-10-18

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2022-10-17

▶