SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Linux)  >   Linux Kernel Vendors:   kernel.org
Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
SecurityTracker Alert ID:  1041476
SecurityTracker URL:  http://securitytracker.com/id/1041476
CVE Reference:   CVE-2018-5391   (Links to External Site)
Date:  Aug 15 2018
Impact:   Denial of service via network
Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in the Linux kernel. A remote user can consume excessive CPU resources on the target system.

The system uses an inefficient IP fragment reassembly algorithm. A remote user can send specially crafted fragmented data to consume excessive CPU resources on the target system.

Juha-Matti Tilli (Aalto University, Department of Communications and Networking / Nokia Bell Labs) reported this vulnerability.

Impact:   A remote user can consume excessive CPU resources on the target system.
Solution:   No upstream solution was available at the time of this entry.
Vendor URL:  www.kernel.org/ (Links to External Site)
Cause:   Resource error

Message History:   This archive entry has one or more follow-up message(s) listed below.
Aug 16 2018 (Ubuntu Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Ubuntu has issued a fix for Ubuntu Linux 18.04 LTS.
Aug 16 2018 (Ubuntu Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Ubuntu has issued a fix for Ubuntu Linux 14.04 LTS.
Aug 16 2018 (Ubuntu Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Ubuntu has issued a fix for Ubuntu Linux 16.04 LTS.
Sep 25 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 6.4 and 7.3.
Oct 9 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 6.
Oct 16 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 6.6.
Oct 17 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 6.5.
Oct 17 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 6.7.
Oct 26 2018 (Cisco Issues Fix for Cisco Identity Services Engine) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Identity Services Engine.
Oct 26 2018 (Cisco Issues Fix for Cisco Meeting Server) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco Meeting Server.
Oct 26 2018 (Cisco Issues Fix for Cisco IOS) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco IOS.
Oct 26 2018 (Cisco Issues Fix for Cisco NX-OS) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco NX-OS.
Oct 26 2018 (Cisco Issues Fix for Cisco IP Phones) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco IP Phones.
Oct 26 2018 (Cisco Issues Fix for Cisco WebEx Meetings Server) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco WebEx Meetings Server.
Oct 26 2018 (Cisco Issues Fix for Cisco TelePresence) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco TelePresence.
Oct 26 2018 (Cisco Issues Fix for Cisco Aironet) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco Aironet.
Oct 26 2018 (Cisco Issues Fix for Cisco Prime Collaboration) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco Prime Collaboration.
Oct 26 2018 (Cisco Issues Fix for Cisco Unified Computing System) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco Unified Computing System.
Oct 26 2018 (Cisco Issues Advisory for Cisco Unified Contact Center) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Unified Contact Center.
Oct 26 2018 (Cisco Issues Advisory for Cisco Secure Access Control System) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Secure Access Control System.
Oct 26 2018 (Cisco Issues Advisory for Cisco MediaSense) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco MediaSense.
Oct 26 2018 (Cisco Issues Fix for Cisco Unified Communications Domain Manager) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued a fix for Cisco Unified Communications Domain Manager.
Oct 26 2018 (Cisco Issues Advisory for Cisco Unified Communications Domain Manager) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Unified Communications Domain Manager.
Oct 26 2018 (Cisco Issues Advisory for Cisco Wireless LAN Controller) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Wireless LAN Controller.
Oct 26 2018 (Cisco Issues Advisory for Cisco Unity) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Unity.
Oct 26 2018 (Cisco Issues Advisory for Cisco Unified Intelligence Center) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Cisco has issued an advisory for Cisco Unified Intelligence Center.
Oct 30 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 7.
Nov 12 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 7.5.
Nov 13 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 7.4.
Nov 13 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 7.2.
Nov 13 2018 (Red Hat Issues Fix) Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System
Red Hat has issued a fix for Red Hat Enterprise Linux 6.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC