1. DNS/毒盛/2020/saddns.net/CVE-2020-25705
https://bugzilla.redhat.com/show_bug.cgi?id=1894579
CVE-2020-25705 Detail (NVD Last Modified: 12/02/2020 Awaiting Analysis)
https://nvd.nist.gov/vuln/detail/CVE-2020-25705
CVE-2020-25705 Detail This vulnerability is currently awaiting analysis.
Description
A flaw in the way reply ICMP packets are limited in the Linux kernel functionality was found that allows to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypassing source port UDP randomization.
The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well. Kernel versions before 5.10 may be vulnerable to this issue.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25705