CLSA-2023-1684277390

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1684277390
Upstream
Published
2023-05-16T22:49:57Z
Modified
2026-06-04T09:46:07.535399369Z
Summary
Fix CVE(s): CVE-2022-1012
Details
  • Bionic update: upstream stable patchset 2022-09-12 (LP: #1989374) // CVE-2022-1012
    • tcp: use different parts of the portoffset for index and offset
    • tcp: add small random increments to the source port
    • tcp: dynamically allocate the perturb table used by source ports
    • tcp: increase source port perturb table to 2^16
    • tcp: drop the hash32() part from the index calculation
  • Bionic update: upstream stable patchset 2022-09-12 (LP: #1989374)
    • tcp: add some entropy in __inethashconnect()
  • Bionic update: upstream stable patchset 2022-07-06 (LP: #1980879) // CVE-2022-1012
    • tcp: resalt the secret every 10 seconds
    • secure_seq: use the 64 bits of the siphash for port offset calculation
  • Bionic update: upstream stable patchset 2022-07-06 (LP: #1980879)
    • tcp: change source port randomizarion at connect() time
  • Miscellaneous upstream changes
    • Revert "tcp: drop the hash32() part from the index calculation"
    • Revert "tcp: increase source port perturb table to 2^16"
    • Revert "tcp: dynamically allocate the perturb table used by source ports"
    • Revert "tcp: add small random increments to the source port"
    • Revert "tcp: resalt the secret every 10 seconds"
    • Revert "tcp: use different parts of the portoffset for index and offset"
    • Revert "secureseq: use the 64 bits of the siphash for port offset calculation"
    • Revert "tcp: change source port randomizarion at connect() time"
    • Revert "secureseq: use SipHash in place of MD5"
    • Revert "tcp: allow to turn tcp timestamp randomization off"
    • Revert "tcp/dccp: better use of ephemeral ports in connect()"
    • tcp/dccp: better use of ephemeral ports in connect()
    • tcp: randomize tcp timestamp offsets for each connection
    • tcp: allow to turn tcp timestamp randomization off
    • secure_seq: use SipHash in place of MD5
References

Affected packages

TuxCare:Ubuntu:16.04
linux-buildinfo-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-buildinfo-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-buildinfo-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-buildinfo-4.4.0-240-tuxcare.els11-lowlatency

Package

Name
linux-buildinfo-4.4.0-240-tuxcare.els11-lowlatency
Purl
pkg:deb/tuxcare/linux-buildinfo-4.4.0-240-tuxcare.els11-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-cloud-tools-4.4.0-240-tuxcare.els11

Package

Name
linux-cloud-tools-4.4.0-240-tuxcare.els11
Purl
pkg:deb/tuxcare/linux-cloud-tools-4.4.0-240-tuxcare.els11?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-cloud-tools-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-cloud-tools-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-cloud-tools-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-cloud-tools-4.4.0-240-tuxcare.els11-lowlatency

Package

Name
linux-cloud-tools-4.4.0-240-tuxcare.els11-lowlatency
Purl
pkg:deb/tuxcare/linux-cloud-tools-4.4.0-240-tuxcare.els11-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-cloud-tools-common

Package

Name
linux-cloud-tools-common
Purl
pkg:deb/tuxcare/linux-cloud-tools-common?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-cloud-tools-generic

Package

Name
linux-cloud-tools-generic
Purl
pkg:deb/tuxcare/linux-cloud-tools-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-cloud-tools-lowlatency

Package

Name
linux-cloud-tools-lowlatency
Purl
pkg:deb/tuxcare/linux-cloud-tools-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-crashdump

Package

Name
linux-crashdump
Purl
pkg:deb/tuxcare/linux-crashdump?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-doc

Package

Name
linux-doc
Purl
pkg:deb/tuxcare/linux-doc?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-generic

Package

Name
linux-generic
Purl
pkg:deb/tuxcare/linux-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-headers-4.4.0-240-tuxcare.els11

Package

Name
linux-headers-4.4.0-240-tuxcare.els11
Purl
pkg:deb/tuxcare/linux-headers-4.4.0-240-tuxcare.els11?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-headers-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-headers-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-headers-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-headers-4.4.0-240-tuxcare.els11-lowlatency

Package

Name
linux-headers-4.4.0-240-tuxcare.els11-lowlatency
Purl
pkg:deb/tuxcare/linux-headers-4.4.0-240-tuxcare.els11-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-headers-generic

Package

Name
linux-headers-generic
Purl
pkg:deb/tuxcare/linux-headers-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-headers-lowlatency

Package

Name
linux-headers-lowlatency
Purl
pkg:deb/tuxcare/linux-headers-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-image-generic

Package

Name
linux-image-generic
Purl
pkg:deb/tuxcare/linux-image-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-image-lowlatency

Package

Name
linux-image-lowlatency
Purl
pkg:deb/tuxcare/linux-image-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-image-unsigned-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-image-unsigned-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-image-unsigned-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-image-unsigned-4.4.0-240-tuxcare.els11-lowlatency

Package

Name
linux-image-unsigned-4.4.0-240-tuxcare.els11-lowlatency
Purl
pkg:deb/tuxcare/linux-image-unsigned-4.4.0-240-tuxcare.els11-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-libc-dev

Package

Name
linux-libc-dev
Purl
pkg:deb/tuxcare/linux-libc-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-lowlatency

Package

Name
linux-lowlatency
Purl
pkg:deb/tuxcare/linux-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-modules-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-modules-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-modules-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-modules-4.4.0-240-tuxcare.els11-lowlatency

Package

Name
linux-modules-4.4.0-240-tuxcare.els11-lowlatency
Purl
pkg:deb/tuxcare/linux-modules-4.4.0-240-tuxcare.els11-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-modules-extra-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-modules-extra-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-modules-extra-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-source

Package

Name
linux-source
Purl
pkg:deb/tuxcare/linux-source?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-source-4.4.0

Package

Name
linux-source-4.4.0
Purl
pkg:deb/tuxcare/linux-source-4.4.0?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-4.4.0-240-tuxcare.els11

Package

Name
linux-tools-4.4.0-240-tuxcare.els11
Purl
pkg:deb/tuxcare/linux-tools-4.4.0-240-tuxcare.els11?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-4.4.0-240-tuxcare.els11-generic

Package

Name
linux-tools-4.4.0-240-tuxcare.els11-generic
Purl
pkg:deb/tuxcare/linux-tools-4.4.0-240-tuxcare.els11-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-4.4.0-240-tuxcare.els11-lowlatency

Package

Name
linux-tools-4.4.0-240-tuxcare.els11-lowlatency
Purl
pkg:deb/tuxcare/linux-tools-4.4.0-240-tuxcare.els11-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-common

Package

Name
linux-tools-common
Purl
pkg:deb/tuxcare/linux-tools-common?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-generic

Package

Name
linux-tools-generic
Purl
pkg:deb/tuxcare/linux-tools-generic?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-host

Package

Name
linux-tools-host
Purl
pkg:deb/tuxcare/linux-tools-host?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0-240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"
linux-tools-lowlatency

Package

Name
linux-tools-lowlatency
Purl
pkg:deb/tuxcare/linux-tools-lowlatency?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.0.240.274

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1684277390.json"