admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-01-21 13:01:13 +00:00
parent 6358fd489a
commit 7899de75bf
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
2019/18xxx/CVE-2019-18282.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashmd value as a secret, and because jhash (instead of siphash) is used. The hashmd value remains the same starting from boot time, and can be inferred by an attacker. This affects net/core/flow_dissector.c and related code."
"value": "The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and because jhash (instead of siphash) is used. The hashmd value remains the same starting from boot time, and can be inferred by an attacker. This affects net/core/flow_dissector.c and related code."
}
]
},

5
2020/7xxx/CVE-2020-7239.json
View File

@ -61,6 +61,11 @@
"refsource": "MISC",
"name": "https://www.hooperlabs.xyz/disclosures/cve-2020-7239.php",
"url": "https://www.hooperlabs.xyz/disclosures/cve-2020-7239.php"
},
{
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/10035",
"url": "https://wpvulndb.com/vulnerabilities/10035"
}
]
}