Linux Kernel IP ID Values Information Disclosure Vulnerability

By GIXnews


A vulnerability in the Linux Kernel could allow an unauthenticated, remote attacker to access sensitive information on a targeted system.

The vulnerability exists because it is possible to extract the Kernel Address Space Layout Randomization (KASLR) kernel image offset of the affected software using the IP ID values that the kernel produces for connectionless protocols. An attacker could exploit this vulnerability by forcing the targeted system to send UDP or ICMP traffic to an attacker-controlled IP address. A successful exploit could allow the attacker to access sensitive information, which could be used to conduct further attacks.

Kernel.org has confirmed the vulnerability and released software updates.

Security Impact Rating: Medium

CVE: CVE-2019-10639

Source:: Cisco Multivendor Vulnerability Alerts