CVE-2020-25645

Description

A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality.

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.39%• Percentile: 61%

Techniques & Countermeasures

• CWE-319•Cleartext Transmission of Sensitive Information

  The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

Affected Systems

• canonical•ubuntu_linux

  14.04 | 16.04 | 18.04 | 20.04

• debian•debian_linux

  9.0 | 10.0

• linux•linux_kernel

  < 5.9.0 | 5.9.0 | 5.9.0:rc1 | 5.9.0:rc2 | 5.9.0:rc3 | 5.9.0:rc4 | 5.9.0:rc5 | 5.9.0:rc6

• netapp•hci_compute_node_firmware

  na

• netapp•solidfire_\&_hci_management_node

  na

• netapp•solidfire_\&_hci_storage_node

  na

• opensuse•leap

  15.1 | 15.2

References (8)

• https://bugzilla.redhat.com/show_bug.cgi?id=1883988
• http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00035.html
• http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00042.html
• https://www.debian.org/security/2020/dsa-4774
• https://lists.debian.org/debian-lts-announce/2020/10/msg00028.html
• https://security.netapp.com/advisory/ntap-20201103-0004/
• https://lists.debian.org/debian-lts-announce/2020/12/msg00027.html
• http://packetstormsecurity.com/files/161229/Kernel-Live-Patch-Security-Notice-LSN-0074-1.html