CVE-2018-5390

Published: Aug 6, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Vendor	Product	Versions
Linux	Linux Kernel	affected `4.9 - < 4.9*`

Weaknesses (CWE)

CWE-400

References

RHSA-2018:2785

vendor-advisory

x_refsource_REDHAT

VU#962459

third-party-advisory

x_refsource_CERT-VN

USN-3741-2

vendor-advisory

x_refsource_UBUNTU

RHSA-2018:2776

vendor-advisory

x_refsource_REDHAT

RHSA-2018:2933

vendor-advisory

x_refsource_REDHAT

RHSA-2018:2403

vendor-advisory

x_refsource_REDHAT

RHSA-2018:2395

vendor-advisory

x_refsource_REDHAT

USN-3763-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2018:2384

vendor-advisory

x_refsource_REDHAT

USN-3741-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2018:2402

vendor-advisory

x_refsource_REDHAT

RHSA-2018:2948

vendor-advisory

x_refsource_REDHAT

USN-3742-2

vendor-advisory

x_refsource_UBUNTU

1041434

vdb-entry

x_refsource_SECTRACK

USN-3732-2

vendor-advisory

x_refsource_UBUNTU

104976

vdb-entry

x_refsource_BID

[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update

mailing-list

x_refsource_MLIST

1041424

vdb-entry

x_refsource_SECTRACK

USN-3742-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2018:2924

vendor-advisory

x_refsource_REDHAT

20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018

vendor-advisory

x_refsource_CISCO

RHSA-2018:2789

vendor-advisory

x_refsource_REDHAT

DSA-4266

vendor-advisory

x_refsource_DEBIAN

RHSA-2018:2645

vendor-advisory

x_refsource_REDHAT

USN-3732-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2018:2791

vendor-advisory

x_refsource_REDHAT

RHSA-2018:2790

vendor-advisory

x_refsource_REDHAT

[oss-security] 20190628 Re: linux-distros membership application - Microsoft

mailing-list

x_refsource_MLIST

[oss-security] 20190706 Re: linux-distros membership application - Microsoft

mailing-list

x_refsource_MLIST

[oss-security] 20190706 Re: linux-distros membership application - Microsoft

mailing-list

x_refsource_MLIST

https://www.oracle.com/security-alerts/cpujul2020.html

x_refsource_MISC

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

x_refsource_CONFIRM

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

x_refsource_CONFIRM

https://security.netapp.com/advisory/ntap-20180815-0003/

x_refsource_CONFIRM

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt

x_refsource_CONFIRM

https://www.synology.com/support/security/Synology_SA_18_41

x_refsource_CONFIRM

https://support.f5.com/csp/article/K95343321

x_refsource_CONFIRM

https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack

x_refsource_CONFIRM

https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e

x_refsource_CONFIRM

https://support.f5.com/csp/article/K95343321?utm_source=f5support&amp%3Butm_medium=RSS

x_refsource_CONFIRM

https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf

x_refsource_CONFIRM

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-5390

Description

Affected Products

Weaknesses (CWE)

References