[CLSA-2023:1684277794] Fix CVE(s): CVE-2022-1012
Type:
security
Severity:
Important
Release date:
2023-05-16 22:56:40 UTC
Description:
* Bionic update: upstream stable patchset 2022-09-12 (LP: #1989374) // CVE-2022-1012 - tcp: use different parts of the port_offset for index and offset - tcp: add small random increments to the source port - tcp: dynamically allocate the perturb table used by source ports - tcp: increase source port perturb table to 2^16 - tcp: drop the hash_32() part from the index calculation * Bionic update: upstream stable patchset 2022-09-12 (LP: #1989374) - tcp: add some entropy in __inet_hash_connect() * Bionic update: upstream stable patchset 2022-07-06 (LP: #1980879) // CVE-2022-1012 - tcp: resalt the secret every 10 seconds - secure_seq: use the 64 bits of the siphash for port offset calculation * Bionic update: upstream stable patchset 2022-07-06 (LP: #1980879) - tcp: change source port randomizarion at connect() time * Miscellaneous upstream changes - Revert "tcp: drop the hash_32() part from the index calculation" - Revert "tcp: increase source port perturb table to 2^16" - Revert "tcp: dynamically allocate the perturb table used by source ports" - Revert "tcp: add small random increments to the source port" - Revert "tcp: resalt the secret every 10 seconds" - Revert "tcp: use different parts of the port_offset for index and offset" - Revert "secure_seq: use the 64 bits of the siphash for port offset calculation" - Revert "tcp: change source port randomizarion at connect() time" - Revert "secure_seq: use SipHash in place of MD5" - Revert "tcp: allow to turn tcp timestamp randomization off" - Revert "tcp/dccp: better use of ephemeral ports in connect()" - tcp/dccp: better use of ephemeral ports in connect() - tcp: randomize tcp timestamp offsets for each connection - tcp: allow to turn tcp timestamp randomization off - secure_seq: use SipHash in place of MD5
Updated packages:
  • linux-buildinfo-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:d1f94d8d679604229efb30bb7c7f7d07dea46840
  • linux-buildinfo-4.4.0-240-tuxcare.els11-lowlatency_4.4.0-240.274_amd64.deb
    sha:7b01afaac5fc6e1ea4749084b000c4c5c70288a6
  • linux-cloud-tools-4.4.0-240-tuxcare.els11_4.4.0-240.274_amd64.deb
    sha:d12146581486b30ad20c40c69c2553bd52d4d397
  • linux-cloud-tools-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:9c8ae5d814a4d84f05184a0265ff206b6be3f59f
  • linux-cloud-tools-4.4.0-240-tuxcare.els11-lowlatency_4.4.0-240.274_amd64.deb
    sha:47692547a10208568d16e7eb7d988eea5d38f148
  • linux-cloud-tools-common_4.4.0-240.274_all.deb
    sha:c53b07b3581c7be02473de3795bd6537e0f976a1
  • linux-cloud-tools-generic_4.4.0.240.274_amd64.deb
    sha:f1b819ea20a639eb0bc77bfbd540d14d764d4bf9
  • linux-cloud-tools-lowlatency_4.4.0.240.274_amd64.deb
    sha:e353a72791bf8627933c4d8d13c3eeda55c1a46e
  • linux-crashdump_4.4.0.240.274_amd64.deb
    sha:2e86670de4d0724c8b413ad090a060a6f4097b44
  • linux-doc_4.4.0-240.274_all.deb
    sha:769c3f56d823d32a6f198758c2fb772975070e80
  • linux-generic_4.4.0.240.274_amd64.deb
    sha:296b1683cc2f202fe3df78782d18810203d37f7e
  • linux-headers-4.4.0-240-tuxcare.els11_4.4.0-240.274_all.deb
    sha:4aaad1bd443b4284b69f077f9f84fd453bc7e652
  • linux-headers-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:8968d557f3138e600f482d9b4189d689344fe47f
  • linux-headers-4.4.0-240-tuxcare.els11-lowlatency_4.4.0-240.274_amd64.deb
    sha:052b4b6e9f09467bf227b6bb66c97ad7a623aae4
  • linux-headers-generic_4.4.0.240.274_amd64.deb
    sha:0d1e84fc1234bc694886549cb01915c2fdd8e2ee
  • linux-headers-lowlatency_4.4.0.240.274_amd64.deb
    sha:7f6fc869d23333a0541e9ae383fc8978fcd868fe
  • linux-image-generic_4.4.0.240.274_amd64.deb
    sha:b86a4556b903c955d8955b66f00c56fe99643b06
  • linux-image-lowlatency_4.4.0.240.274_amd64.deb
    sha:02ea1bec30b02160b6abeab0e1aaa9a63fcc2a87
  • linux-image-unsigned-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:1556dbdd8c72ff4184c7dfd2b99ea2b01f46e049
  • linux-image-unsigned-4.4.0-240-tuxcare.els11-lowlatency_4.4.0-240.274_amd64.deb
    sha:05c2b3cb3a650a2a7aa2a3a9f5ae3dcadc2bfda6
  • linux-libc-dev_4.4.0-240.274_amd64.deb
    sha:80ea8fc6bca129594678e5dabd63753383706fba
  • linux-lowlatency_4.4.0.240.274_amd64.deb
    sha:bfe886825a9fedf44b72ad93ea40875f6f2970df
  • linux-modules-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:c2ee79b10526373c0744855b39d3b1633805f057
  • linux-modules-4.4.0-240-tuxcare.els11-lowlatency_4.4.0-240.274_amd64.deb
    sha:50bd53964b7e7413e645678c3f717a9e9778292f
  • linux-modules-extra-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:3e09c627e9fc3ac8e6d35a55f69fc8041ac66a0a
  • linux-source_4.4.0.240.274_all.deb
    sha:d22e1e0741463f7dda303d76f71899a8cf8190e1
  • linux-source-4.4.0_4.4.0-240.274_all.deb
    sha:e92201e55672b53c632b267c200047886f503066
  • linux-tools-4.4.0-240-tuxcare.els11_4.4.0-240.274_amd64.deb
    sha:9f5d592be67f3f0b39df9a604ad75336320cd745
  • linux-tools-4.4.0-240-tuxcare.els11-generic_4.4.0-240.274_amd64.deb
    sha:1daee1ee69d57ccb86ba5511b10432b5d1d93ca0
  • linux-tools-4.4.0-240-tuxcare.els11-lowlatency_4.4.0-240.274_amd64.deb
    sha:9e11dbbbeacf6168524fdbaedadb063aaabb1f45
  • linux-tools-common_4.4.0-240.274_all.deb
    sha:99d87d2f554b8e9470454bc43ddfff2c200a9714
  • linux-tools-generic_4.4.0.240.274_amd64.deb
    sha:d5f6a9f23f2851bfd7dd96753c43a3c6206c1f42
  • linux-tools-host_4.4.0-240.274_all.deb
    sha:ed2f9d0cf238d52456292a4119262af09b78ec7c
  • linux-tools-lowlatency_4.4.0.240.274_amd64.deb
    sha:00d8529af3ac2aa938eae95c6adaf18d60d566f8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.