Use of a broken or risky cryptographic algorithm in Linux kernel

#VU66811 Use of a broken or risky cryptographic algorithm in Linux kernel

Published: 2022-08-29

Vulnerability identifier: #VU66811

Vulnerability risk: Medium

CVSSv3.1: 4.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-36516

CWE-ID: CWE-327

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) or MitM attacks.

The vulnerability exists due to an error in the mixed IPID assignment method with the hash-based IPID assignment policy in Linux kernel. A remote attacker can inject data into a victim's TCP session or terminate that session.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://dl.acm.org/doi/10.1145/3372297.3417884
http://security.netapp.com/advisory/ntap-20220331-0003/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Ubuntu update for linux

Ubuntu update for linux-aws

Multiple vulnerabilities in Dell Secure Connect Gateway

Multiple vulnerabilities in Dell VxRail Appliance components

SUSE update for the Linux Kernel

Multiple vulnerabilities in OpenShift Logging 5.5

Multiple vulnerabilities in Openshift Logging 5.3

Multiple vulnerabilities in Dell NetWorker vProxy

Red Hat Enterprise Linux 9 update for kernel