= DNS/毒盛/2020/saddns.net/CVE-2020-25705 =
<<TableOfContents()>>

https://bugzilla.redhat.com/show_bug.cgi?id=1894579

CVE-2020-25705 Detail  (NVD Last Modified: 12/02/2020 Awaiting Analysis)
  https://nvd.nist.gov/vuln/detail/CVE-2020-25705#vulnCurrentDescriptionTitle

https://nvd.nist.gov/vuln/detail/CVE-2020-25705

CVE-2020-25705 Detail
This vulnerability is currently awaiting analysis.

Description

A flaw in the way reply ICMP packets are limited in the Linux kernel functionality was found that allows to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypassing source port UDP randomization. 

The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well. Kernel versions before 5.10 may be vulnerable to this issue.

----
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25705

ubuntu
https://ubuntu.com/security/CVE-2020-25705