Project

General

Profile

Recent TCP stack vulnerability (effects all Replicant versions)

Added by Thomas Kitchin almost 7 years ago

"Akamai is aware of a vulnerability, announced at the USENIX Security conference on Aug 10, 2016, which describes a vulnerability in the Linux kernel's tcp stack implementation (kernel versions 3.6 to 4.6). At a high-level, a patient adversary can leverage rate-limited challenge ACK's on a non-secure tcp connection to conduct a hijacking attack."

I say this effects all Replicant versions based on the value of the global challenge ack counter only.

https://blogs.akamai.com/2016/08/vulnerability-in-the-linux-kernels-tcp-stack-implementation.html


Replies (1)

RE: Recent TCP stack vulnerability (effects all Replicant versions) - Added by Wolfgang Wiedmeyer almost 7 years ago

If it doesn't affect kernels < 3.6, then it would only be relevant for the GTA04 as all other devices use older kernel versions. When we get to the point where there is support for the GTA04 in Replicant 6.0, a kernel will very likely be in use that already has this vulnerability fixed.

    (1-1/1)