Primary

Context

Linux Kernel TCP Timestamp Offset Vulnerability Reintroduction

Vulnerability

Patched

A vulnerability in the Linux kernel's TCP implementation has been addressed by restoring the use of source ports in timestamp offset randomization. This change mitigates an off-path TCP source port leakage issue reported by Zhouyan Deng, which exploited a SYN cookie side-channel. The vulnerability was introduced by a previous modification that downgraded timestamp offset handling to be per-host, rather than per-port, allowing for potential port leakage. The issue affects the Linux kernel stable tree.

Impact

The restoration of per-port timestamp offset randomization helps prevent off-path attackers from leaking TCP source ports through a side-channel exploit, thereby enhancing the security of TCP connections.

Added: Mar 18, 2026, 11:23 AM

Updated: Mar 18, 2026, 11:23 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.8

remediation

7.7

relevance

4.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.8

remediation

7.7

relevance

4.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel TCP Timestamp Offset Vulnerability Reintroduction

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating