#VU66811 Use of a broken or risky cryptographic algorithm in Linux kernel - CVE-2020-36516

Cybersecurity Help s.r.o.

Published: 2022-08-29

Vulnerability identifier: #VU66811

Vulnerability risk: Medium

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-36516

CWE-ID: CWE-327

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) or MitM attacks.

The vulnerability exists due to an error in the mixed IPID assignment method with the hash-based IPID assignment policy in Linux kernel. A remote attacker can inject data into a victim's TCP session or terminate that session.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
http://dl.acm.org/doi/10.1145/3372297.3417884
http://security.netapp.com/advisory/ntap-20220331-0003/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.15

Red Hat Enterprise Linux 8.6 Extended Update Support update for kernel

Ubuntu update for linux

Ubuntu update for linux-aws

Multiple vulnerabilities in Dell Secure Connect Gateway

Multiple vulnerabilities in Dell VxRail Appliance components

SUSE update for the Linux Kernel

Multiple vulnerabilities in Red Hat Advanced Cluster Management for Kubernetes 2.6

Multiple vulnerabilities in OpenShift Logging 5.5