CVE-2021-20322
Description
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.
Risk Information
Base Score
7.4
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.114
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.80.1.noarch.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.80.1.noarch.rpm | Linux |
| SUSE-SU-2021:3848-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.80.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.103.1.x86_64.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.103.1.noarch.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.103.1.noarch.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.103.1.noarch.rpm | Linux |
| SUSE-SU-2021:3877-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.103.1.x86_64.rpm | Linux |
| Linux kernel (USN-5268-1) linux-image-kvm_4.15.0.1106.102_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-generic_4.15.0.167.156_i386.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-generic_4.15.0.167.156_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-virtual_4.15.0.167.156_i386.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-virtual_4.15.0.167.156_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-dell300x_4.15.0.1034.36_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-lowlatency_4.15.0.167.156_i386.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-lowlatency_4.15.0.167.156_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-aws-lts-18.04_4.15.0.1119.122_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-gcp-lts-18.04_4.15.0.1115.134_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-1106-kvm_4.15.0-1106.108_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-1115-gcp_4.15.0-1115.129_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-oracle-lts-18.04_4.15.0.1086.96_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-1086-oracle_4.15.0-1086.94_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-167-generic_4.15.0-167.175_i386.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-167-generic_4.15.0-167.175_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-1034-dell300x_4.15.0-1034.39_amd64.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-167-lowlatency_4.15.0-167.175_i386.deb | Linux |
| Linux kernel (USN-5268-1) linux-image-4.15.0-167-lowlatency_4.15.0-167.175_amd64.deb | Linux |
| Kernel-uek update (ELSA-2022-9260) kernel-uek-4.1.12-124.61.2.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9260) kernel-uek-debug-4.1.12-124.61.2.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9260) kernel-uek-debug-devel-4.1.12-124.61.2.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9260) kernel-uek-devel-4.1.12-124.61.2.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9260) kernel-uek-doc-4.1.12-124.61.2.el7uek.noarch.rpm | Linux |
| Kernel-uek-firmware update (ELSA-2022-9260) kernel-uek-firmware-4.1.12-124.61.2.el7uek.noarch.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-372.9.1.el8.noarch.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-core-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-372.9.1.el8.noarch.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
| (RHSA-2022:1988) kernel security, bug fix, and enhancement update python3-perf-4.18.0-372.9.1.el8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234