Vulnerability DatabaseCVE-2019-10638
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2019-10638
July 05, 2019
In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and ICMP). When such traffic is sent to multiple destination IP addresses, it is possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack may be conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses.
Related Resources (31)
http://www.securityfocus.com/bid/109092
https://access.redhat.com/errata/RHSA-2019:3517
https://access.redhat.com/errata/RHSA-2019:3309
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00014.html
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=355b98553789b646ed97ad801a619ff898471b92
https://www.debian.org/security/2019/dsa-4497
https://github.com/torvalds/linux/commit/df453700e8d81b1bdafdf684365ee2b9431fb702
https://lists.debian.org/debian-lts-announce/2019/08/msg00017.html
https://people.canonical.com/~ubuntu-security/cve/CVE-2019-10638
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.1.7
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.8
https://security-tracker.debian.org/tracker/CVE-2019-10638
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00025.html
https://seclists.org/bugtraq/2019/Aug/13
https://seclists.org/bugtraq/2019/Aug/18
https://usn.ubuntu.com/4116-1/
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=df453700e8d81b1bdafdf684365ee2b9431fb702
https://access.redhat.com/security/cve/CVE-2019-10638
https://seclists.org/bugtraq/2019/Nov/11
https://github.com/torvalds/linux/commit/55f0fc7a02de8f12757f4937143d8d5091b2e40b
https://www.oracle.com/security-alerts/cpuApr2021.html
https://usn.ubuntu.com/4117-1/
https://security.netapp.com/advisory/ntap-20190806-0001/
https://github.com/torvalds/linux/commit/355b98553789b646ed97ad801a619ff898471b92
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
https://usn.ubuntu.com/4115-1/
https://arxiv.org/pdf/1906.10478.pdf
https://usn.ubuntu.com/4118-1/
https://usn.ubuntu.com/4114-1/
https://lists.debian.org/debian-lts-announce/2019/08/msg00016.html
https://www.debian.org/security/2019/dsa-4495
Do you need more information?
Contact Us
CVSS v4
Base Score:
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
PASSIVE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
NONE
Vulnerable System Availability
NONE
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE
CVSS v2
Base Score:
4.3
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
Weakness Type (CWE)
Inadequate Encryption Strength
CWE-326
EPSS
Base Score:
0.76