CVE-2019-11477

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 19-06-2019 02:15

Last modified: - 17-01-2023 10:28

Total changes: - 5

Description

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

7.5

Base score

3.9

3.6

Exploitability score

Impact score

Verification logic

Reference

https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md
https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic
https://access.redhat.com/security/vulnerabilities/tcpsack
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=3b4929f65b0d8249f19a50245cd88ed1a2f78cff
https://support.f5.com/csp/article/K78234183
http://packetstormsecurity.com/files/153346/Kernel-Live-Patch-Security-Notice-LSN-0052-1.html
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193
VU#905115-Third Party Advisory, US Government Resource
[oss-security] 20190620 Re: Linux and FreeBSD Kernel: Multiple TCP-based remote denial of service issues-Mailing List, Third Party Advisory
https://www.synology.com/security/advisory/Synology_SA_19_28
https://security.netapp.com/advisory/ntap-20190625-0001/
RHSA-2019:1594-Third Party Advisory
RHSA-2019:1602-Third Party Advisory
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0006
https://kc.mcafee.com/corporate/index?page=content&id=SB10287
[oss-security] 20190628 Re: linux-distros membership application - Microsoft-Mailing List, Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2019-0010.html
[oss-security] 20190706 Re: linux-distros membership application - Microsoft-Mailing List, Third Party Advisory
[oss-security] 20190706 Re: linux-distros membership application - Microsoft-Mailing List, Third Party Advisory
RHSA-2019:1699-Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-462066.pdf
https://www.us-cert.gov/ics/advisories/icsa-19-253-03
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html
[oss-security] 20191023 Membership application for linux-distros - VMware-Mailing List, Third Party Advisory
[oss-security] 20191029 Re: Membership application for linux-distros - VMware-Mailing List, Third Party Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-kernel-en
https://www.oracle.com/security-alerts/cpujan2020.html
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txt
https://www.oracle.com/security-alerts/cpuoct2020.html

Keywords

CVE-2019-11477

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2019-11477

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures