CVE-2026-23247Linux vulnerability

9 documents8 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 94.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedMar 18

Description

In the Linux kernel, the following vulnerability has been resolved: tcp: secure_seq: add back ports to TS offset This reverts 28ee1b746f49 ("secure_seq: downgrade to per-host timestamp offsets") tcp_tw_recycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie side-channel that can be fixed in multiple ways. One of them is to bring back TCP ports in TS offset randomization. As a bonus, we perform a single siphash() computation to provide both an ISN an

Affected Packages3 packages

Linuxlinux/linux_kernel4.11.06.18.17+1
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linux28ee1b746f493b7c62347d714f58fbf4f70df4f0eae2f14ab2efccdb7480fae7d42c4b0116ef8805+4

🔴Vulnerability Details

4
OSV
tcp: secure_seq: add back ports to TS offset2026-03-18
GHSA
GHSA-4hcm-qg7j-cc3v: In the Linux kernel, the following vulnerability has been resolved: tcp: secure_seq: add back ports to TS offset This reverts 28ee1b746f49 ("secure_2026-03-18
OSV
CVE-2026-23247: In the Linux kernel, the following vulnerability has been resolved: tcp: secure_seq: add back ports to TS offset This reverts 28ee1b746f49 ("secure_se2026-03-18
CVEList
tcp: secure_seq: add back ports to TS offset2026-03-18

📋Vendor Advisories

3
Red Hat
kernel: tcp: secure_seq: add back ports to TS offset2026-03-18
Microsoft
tcp: secure_seq: add back ports to TS offset2026-03-10
Debian
CVE-2026-23247: linux - In the Linux kernel, the following vulnerability has been resolved: tcp: secure...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23247 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23247 — Linux vulnerability | cvebase