Linux kernel - challenge ack information leak
Fortinet PSIRT Advisories
Fortinet PSIRT Contact:
Website: https://fortiguard.fortinet.com/faq/psirt-contact
FG-IR-16-047
Final
1
1
2017-04-04T00:00:00
Current version
2017-04-04T00:00:00
2017-04-04T00:00:00
net/ipv4/tcp_input.c in certain Linux kernel versions does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
Information disclosure
FortiOS versions 5.2.8 and below 5.4.0 & 5.4.1 FortiAnalyzer versions 5.4.0 & 5.4.1
For FortiOS, upgrade to versions 5.2.9 or 5.4.2 or 5.6.0 5.4.2 or upcoming 5.6.0
https://fortiguard.fortinet.com/psirt/FG-IR-16-047
Linux kernel - challenge ack information leak
https://nvd.nist.gov/vuln/detail/CVE-2016-5696
https://nvd.nist.gov/vuln/detail/CVE-2016-5696
FortiOS 5.4.1
FortiOS 5.4.0
FortiOS 5.2.8
FortiOS 5.2.7
FortiOS 5.2.6
FortiOS 5.2.5
FortiOS 5.2.4
FortiOS 5.2.3
FortiOS 5.2.2
FortiOS 5.2.1
FortiOS 5.2.0
FortiOS 5.0.14
FortiOS 5.0.13
FortiOS 5.0.12
FortiOS 5.0.11
FortiOS 5.0.10
FortiOS 5.0.9
FortiOS 5.0.8
FortiOS 5.0.7
FortiOS 5.0.6
FortiOS 5.0.5
FortiOS 5.0.4
FortiOS 5.0.3
FortiOS 5.0.2
FortiOS 5.0.1
FortiOS 5.0.0
FortiOS 4.3.19
FortiOS 4.3.18
FortiOS 4.3.17
FortiOS 4.3.16
FortiOS 4.3.15
FortiOS 4.3.14
FortiOS 4.3.13
FortiOS 4.3.12
FortiOS 4.3.11
FortiOS 4.3.10
FortiOS 4.3.9
FortiOS 4.3.8
FortiOS 4.3.7
FortiOS 4.3.6
FortiOS 4.3.5
FortiOS 4.3.4
FortiOS 4.3.3
FortiOS 4.3.2
FortiOS 4.3.1
FortiOS 4.3.0
FortiOS 4.2.16
FortiOS 4.2.15
FortiOS 4.2.14
FortiOS 4.2.13
FortiOS 4.2.12
FortiOS 4.2.11
FortiOS 4.2.10
FortiOS 4.2.9
FortiOS 4.2.8
FortiOS 4.2.7
FortiOS 4.2.6
FortiOS 4.2.5
FortiOS 4.2.4
FortiOS 4.2.3
FortiOS 4.2.2
FortiOS 4.2.1
FortiOS 4.2.0
FortiOS 4.1.11
FortiOS 4.1.10
FortiOS 4.1.9
FortiOS 4.1.8
FortiOS 4.1.7
FortiOS 4.1.6
FortiOS 4.1.5
FortiOS 4.1.4
FortiOS 4.1.3
FortiOS 4.1.2
FortiOS 4.1.1
FortiOS 4.0.4
FortiOS 4.0.3
FortiOS 4.0.2
FortiOS 4.0.1
FortiOS 4.0.0
FortiManager 5.4.1
FortiManager 5.4.0
FortiManager 5.2.10
FortiManager 5.2.9
FortiManager 5.2.8
FortiManager 5.2.7
FortiManager 5.2.6
FortiManager 5.2.4
FortiManager 5.2.3
FortiManager 5.2.2
FortiManager 5.2.1
FortiManager 5.2.0
FortiManager 5.0.12
FortiManager 5.0.11
FortiManager 5.0.10
FortiManager 5.0.9
FortiManager 5.0.8
FortiManager 5.0.7
FortiManager 5.0.6
FortiManager 5.0.5
FortiManager 5.0.4
FortiManager 5.0.3
FortiManager 5.0.2
FortiManager 5.0.1
FortiManager 5.0.0
FortiManager 4.3.8
FortiManager 4.3.7
FortiManager 4.3.6
FortiManager 4.3.5
FortiManager 4.3.4
FortiManager 4.3.3
FortiManager 4.3.2
FortiManager 4.3.1
FortiManager 4.3.0
FortiManager 4.2.9
FortiManager 4.2.8
FortiManager 4.2.7
FortiManager 4.2.6
FortiManager 4.2.5
FortiManager 4.2.4
FortiManager 4.2.3
FortiManager 4.2.2
FortiManager 4.2.1
FortiManager 4.2.0
FortiManager 4.1.4
FortiManager 4.1.3
FortiManager 4.1.2
FortiManager 4.1.1
FortiManager 4.0.3
FortiManager 4.0.2
FortiManager 4.0.1
FortiManager 4.0.0
FortiWAN 4.2.2
FortiWAN 4.2.1
FortiWAN 4.1.3
FortiWAN 4.1.2
FortiWAN 4.1.1
FortiWAN 4.0.6
FortiWAN 4.0.5
FortiWAN 4.0.4
FortiWAN 4.0.3
FortiWAN 4.0.2
FortiWAN 4.0.1
FortiWAN 4.0.0
FortiWAN 0.4.24
FortiWAN 0.4.23
FortiWAN 0.4.20
FortiWAN 0.4.10
FortiAnalyzer 5.4.1
FortiAnalyzer 5.4.0
FortiSandbox 2.3.0
FortiSandbox 2.2.2
FortiSandbox 2.2.1
FortiSandbox 2.2.0
FortiSandbox 2.1.3
FortiSandbox 2.1.2
FortiSandbox 2.1.1
FortiSandbox 2.1.0
FortiSandbox 2.0.3
FortiSandbox 2.0.2
FortiSandbox 2.0.1
FortiSandbox 2.0.0
FortiSandbox 1.4.3
FortiSandbox 1.4.2
FortiSandbox 1.4.1
FortiSandbox 1.4.0
FortiSandbox 1.3.0
FortiSandbox 1.2.3
FortiSandbox 1.2.0
FortiSandbox 1.1.0
FortiWeb 5.5.7
FortiWeb 5.5.6
FortiWeb 5.5.5
FortiWeb 5.5.4
FortiWeb 5.5.3
FortiWeb 5.5.2
FortiWeb 5.5.1
FortiWeb 5.5.0
FortiWeb 5.4.1
FortiWeb 5.4.0
FortiWeb 5.3.9
FortiWeb 5.3.8
FortiWeb 5.3.7
FortiWeb 5.3.6
FortiWeb 5.3.5
FortiWeb 5.3.4
FortiWeb 5.3.3
FortiWeb 5.3.2
FortiWeb 5.3.1
FortiWeb 5.3.0
FortiWeb 5.2.4
FortiWeb 5.2.3
FortiWeb 5.2.2
FortiWeb 5.2.1
FortiWeb 5.2.0
FortiWeb 5.1.4
FortiWeb 5.1.3
FortiWeb 5.1.2
FortiWeb 5.1.1
FortiWeb 5.1.0
FortiWeb 5.0.6
FortiWeb 5.0.5
FortiWeb 5.0.4
FortiWeb 5.0.3
FortiWeb 5.0.2
FortiWeb 5.0.1
FortiWeb 5.0.0
FortiWeb 4.4.7
FortiWeb 4.4.6
FortiWeb 4.4.5
FortiWeb 4.4.4
FortiWeb 4.4.3
FortiWeb 4.4.2
FortiWeb 4.4.1
FortiWeb 4.4.0
FortiWeb 4.3.7
FortiWeb 4.3.6
FortiWeb 4.3.5
FortiWeb 4.3.4
FortiWeb 4.3.3
FortiWeb 4.3.2
FortiWeb 4.3.1
FortiWeb 4.2.4
FortiWeb 4.2.3
FortiWeb 4.2.2
FortiWeb 4.2.0
FortiWeb 4.1.2
FortiWeb 4.1.1
FortiWeb 4.1.0
FortiWeb 4.0.2
FortiWeb 3.0.0
FortiMail 5.3.4
FortiMail 5.3.3
FortiMail 5.3.2
FortiMail 5.3.1
FortiMail 5.3.0
FortiMail 5.2.10
FortiMail 5.2.9
FortiMail 5.2.8
FortiMail 5.2.7
FortiMail 5.2.6
FortiMail 5.2.5
FortiMail 5.2.4
FortiMail 5.2.3
FortiMail 5.2.2
FortiMail 5.2.1
FortiMail 5.2.0
FortiMail 5.1.7
FortiMail 5.1.6
FortiMail 5.1.5
FortiMail 5.1.4
FortiMail 5.1.3
FortiMail 5.1.2
FortiMail 5.1.1
FortiMail 5.1.0
FortiMail 5.0.11
FortiMail 5.0.10
FortiMail 5.0.9
FortiMail 5.0.8
FortiMail 5.0.7
FortiMail 5.0.6
FortiMail 5.0.5
FortiMail 5.0.4
FortiMail 5.0.3
FortiMail 5.0.2
FortiMail 5.0.1
FortiMail 5.0.0
FortiMail 4.3.9
FortiMail 4.3.8
FortiMail 4.3.7
FortiMail 4.3.6
FortiMail 4.3.5
FortiMail 4.3.4
FortiMail 4.3.3
FortiMail 4.3.2
FortiMail 4.3.1
FortiMail 4.3.0
FortiMail 4.2.4
FortiMail 4.2.3
FortiMail 4.2.2
FortiMail 4.2.1
FortiMail 4.2.0
FortiMail 4.1.3
FortiMail 4.1.2
FortiMail 4.1.1
FortiMail 4.1.0
FortiMail 4.0.5
FortiMail 4.0.4
FortiMail 4.0.3
FortiMail 4.0.2
FortiMail 4.0.1
FortiMail 2.0.1
FortiDB 5.1.9
FortiDB 5.1.8
FortiDB 5.1.7
FortiDB 5.1.5
FortiDB 5.1.4
FortiDB 5.1.3
FortiDB 5.1.2
FortiDB 5.1.1
FortiDB 5.1.0
FortiDB 5.0.0
FortiDB 4.4.3
FortiDB 4.4.2
FortiDB 4.4.1
FortiDB 4.4.0
FortiDB 4.3.2
FortiDB 4.0.1
FortiDB 4.0.0
FortiDB 3.2.7
FortiDB 3.2.6
FortiDB 3.2.5
FortiDB 3.2.4
FortiDB 3.2.3
FortiDB 3.2.1
FortiDB 2.4.0
FortiDB 2.0.2
FortiDB 0.5.16
FortiDB 0.4.10
Linux kernel - challenge ack information leak
CVE-2016-5696
FortiOS-5.4.1
FortiOS-5.4.0
FortiOS-5.2.8
FortiOS-5.2.7
FortiOS-5.2.6
FortiOS-5.2.5
FortiOS-5.2.4
FortiOS-5.2.3
FortiOS-5.2.2
FortiOS-5.2.1
FortiOS-5.2.0
FortiOS-5.0.14
FortiOS-5.0.13
FortiOS-5.0.12
FortiOS-5.0.11
FortiOS-5.0.10
FortiOS-5.0.9
FortiOS-5.0.8
FortiOS-5.0.7
FortiOS-5.0.6
FortiOS-5.0.5
FortiOS-5.0.4
FortiOS-5.0.3
FortiOS-5.0.2
FortiOS-5.0.1
FortiOS-5.0.0
FortiOS-4.3.19
FortiOS-4.3.18
FortiOS-4.3.17
FortiOS-4.3.16
FortiOS-4.3.15
FortiOS-4.3.14
FortiOS-4.3.13
FortiOS-4.3.12
FortiOS-4.3.11
FortiOS-4.3.10
FortiOS-4.3.9
FortiOS-4.3.8
FortiOS-4.3.7
FortiOS-4.3.6
FortiOS-4.3.5
FortiOS-4.3.4
FortiOS-4.3.3
FortiOS-4.3.2
FortiOS-4.3.1
FortiOS-4.3.0
FortiOS-4.2.16
FortiOS-4.2.15
FortiOS-4.2.14
FortiOS-4.2.13
FortiOS-4.2.12
FortiOS-4.2.11
FortiOS-4.2.10
FortiOS-4.2.9
FortiOS-4.2.8
FortiOS-4.2.7
FortiOS-4.2.6
FortiOS-4.2.5
FortiOS-4.2.4
FortiOS-4.2.3
FortiOS-4.2.2
FortiOS-4.2.1
FortiOS-4.2.0
FortiOS-4.1.11
FortiOS-4.1.10
FortiOS-4.1.9
FortiOS-4.1.8
FortiOS-4.1.7
FortiOS-4.1.6
FortiOS-4.1.5
FortiOS-4.1.4
FortiOS-4.1.3
FortiOS-4.1.2
FortiOS-4.1.1
FortiOS-4.0.4
FortiOS-4.0.3
FortiOS-4.0.2
FortiOS-4.0.1
FortiOS-4.0.0
FortiManager-5.4.1
FortiManager-5.4.0
FortiManager-5.2.10
FortiManager-5.2.9
FortiManager-5.2.8
FortiManager-5.2.7
FortiManager-5.2.6
FortiManager-5.2.4
FortiManager-5.2.3
FortiManager-5.2.2
FortiManager-5.2.1
FortiManager-5.2.0
FortiManager-5.0.12
FortiManager-5.0.11
FortiManager-5.0.10
FortiManager-5.0.9
FortiManager-5.0.8
FortiManager-5.0.7
FortiManager-5.0.6
FortiManager-5.0.5
FortiManager-5.0.4
FortiManager-5.0.3
FortiManager-5.0.2
FortiManager-5.0.1
FortiManager-5.0.0
FortiManager-4.3.8
FortiManager-4.3.7
FortiManager-4.3.6
FortiManager-4.3.5
FortiManager-4.3.4
FortiManager-4.3.3
FortiManager-4.3.2
FortiManager-4.3.1
FortiManager-4.3.0
FortiManager-4.2.9
FortiManager-4.2.8
FortiManager-4.2.7
FortiManager-4.2.6
FortiManager-4.2.5
FortiManager-4.2.4
FortiManager-4.2.3
FortiManager-4.2.2
FortiManager-4.2.1
FortiManager-4.2.0
FortiManager-4.1.4
FortiManager-4.1.3
FortiManager-4.1.2
FortiManager-4.1.1
FortiManager-4.0.3
FortiManager-4.0.2
FortiManager-4.0.1
FortiManager-4.0.0
FortiWAN-4.2.2
FortiWAN-4.2.1
FortiWAN-4.1.3
FortiWAN-4.1.2
FortiWAN-4.1.1
FortiWAN-4.0.6
FortiWAN-4.0.5
FortiWAN-4.0.4
FortiWAN-4.0.3
FortiWAN-4.0.2
FortiWAN-4.0.1
FortiWAN-4.0.0
FortiWAN-0.4.24
FortiWAN-0.4.23
FortiWAN-0.4.20
FortiWAN-0.4.10
FortiAnalyzer-5.4.1
FortiAnalyzer-5.4.0
FortiSandbox-2.3.0
FortiSandbox-2.2.2
FortiSandbox-2.2.1
FortiSandbox-2.2.0
FortiSandbox-2.1.3
FortiSandbox-2.1.2
FortiSandbox-2.1.1
FortiSandbox-2.1.0
FortiSandbox-2.0.3
FortiSandbox-2.0.2
FortiSandbox-2.0.1
FortiSandbox-2.0.0
FortiSandbox-1.4.3
FortiSandbox-1.4.2
FortiSandbox-1.4.1
FortiSandbox-1.4.0
FortiSandbox-1.3.0
FortiSandbox-1.2.3
FortiSandbox-1.2.0
FortiSandbox-1.1.0
FortiWeb-5.5.7
FortiWeb-5.5.6
FortiWeb-5.5.5
FortiWeb-5.5.4
FortiWeb-5.5.3
FortiWeb-5.5.2
FortiWeb-5.5.1
FortiWeb-5.5.0
FortiWeb-5.4.1
FortiWeb-5.4.0
FortiWeb-5.3.9
FortiWeb-5.3.8
FortiWeb-5.3.7
FortiWeb-5.3.6
FortiWeb-5.3.5
FortiWeb-5.3.4
FortiWeb-5.3.3
FortiWeb-5.3.2
FortiWeb-5.3.1
FortiWeb-5.3.0
FortiWeb-5.2.4
FortiWeb-5.2.3
FortiWeb-5.2.2
FortiWeb-5.2.1
FortiWeb-5.2.0
FortiWeb-5.1.4
FortiWeb-5.1.3
FortiWeb-5.1.2
FortiWeb-5.1.1
FortiWeb-5.1.0
FortiWeb-5.0.6
FortiWeb-5.0.5
FortiWeb-5.0.4
FortiWeb-5.0.3
FortiWeb-5.0.2
FortiWeb-5.0.1
FortiWeb-5.0.0
FortiWeb-4.4.7
FortiWeb-4.4.6
FortiWeb-4.4.5
FortiWeb-4.4.4
FortiWeb-4.4.3
FortiWeb-4.4.2
FortiWeb-4.4.1
FortiWeb-4.4.0
FortiWeb-4.3.7
FortiWeb-4.3.6
FortiWeb-4.3.5
FortiWeb-4.3.4
FortiWeb-4.3.3
FortiWeb-4.3.2
FortiWeb-4.3.1
FortiWeb-4.2.4
FortiWeb-4.2.3
FortiWeb-4.2.2
FortiWeb-4.2.0
FortiWeb-4.1.2
FortiWeb-4.1.1
FortiWeb-4.1.0
FortiWeb-4.0.2
FortiWeb-3.0.0
FortiMail-5.3.4
FortiMail-5.3.3
FortiMail-5.3.2
FortiMail-5.3.1
FortiMail-5.3.0
FortiMail-5.2.10
FortiMail-5.2.9
FortiMail-5.2.8
FortiMail-5.2.7
FortiMail-5.2.6
FortiMail-5.2.5
FortiMail-5.2.4
FortiMail-5.2.3
FortiMail-5.2.2
FortiMail-5.2.1
FortiMail-5.2.0
FortiMail-5.1.7
FortiMail-5.1.6
FortiMail-5.1.5
FortiMail-5.1.4
FortiMail-5.1.3
FortiMail-5.1.2
FortiMail-5.1.1
FortiMail-5.1.0
FortiMail-5.0.11
FortiMail-5.0.10
FortiMail-5.0.9
FortiMail-5.0.8
FortiMail-5.0.7
FortiMail-5.0.6
FortiMail-5.0.5
FortiMail-5.0.4
FortiMail-5.0.3
FortiMail-5.0.2
FortiMail-5.0.1
FortiMail-5.0.0
FortiMail-4.3.9
FortiMail-4.3.8
FortiMail-4.3.7
FortiMail-4.3.6
FortiMail-4.3.5
FortiMail-4.3.4
FortiMail-4.3.3
FortiMail-4.3.2
FortiMail-4.3.1
FortiMail-4.3.0
FortiMail-4.2.4
FortiMail-4.2.3
FortiMail-4.2.2
FortiMail-4.2.1
FortiMail-4.2.0
FortiMail-4.1.3
FortiMail-4.1.2
FortiMail-4.1.1
FortiMail-4.1.0
FortiMail-4.0.5
FortiMail-4.0.4
FortiMail-4.0.3
FortiMail-4.0.2
FortiMail-4.0.1
FortiMail-2.0.1
FortiDB-5.1.9
FortiDB-5.1.8
FortiDB-5.1.7
FortiDB-5.1.5
FortiDB-5.1.4
FortiDB-5.1.3
FortiDB-5.1.2
FortiDB-5.1.1
FortiDB-5.1.0
FortiDB-5.0.0
FortiDB-4.4.3
FortiDB-4.4.2
FortiDB-4.4.1
FortiDB-4.4.0
FortiDB-4.3.2
FortiDB-4.0.1
FortiDB-4.0.0
FortiDB-3.2.7
FortiDB-3.2.6
FortiDB-3.2.5
FortiDB-3.2.4
FortiDB-3.2.3
FortiDB-3.2.1
FortiDB-2.4.0
FortiDB-2.0.2
FortiDB-0.5.16
FortiDB-0.4.10
0
https://fortiguard.fortinet.com/psirt/FG-IR-16-047
Linux kernel - challenge ack information leak
Reference>
https://nvd.nist.gov/vuln/detail/CVE-2016-5696
https://nvd.nist.gov/vuln/detail/CVE-2016-5696