7.8
CVE-2018-5390
- EPSS 73.54%
- Veröffentlicht 06.08.2018 20:29:01
- Zuletzt bearbeitet 21.11.2024 04:08:43
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Virtualization Version4.0
Redhat ≫ Enterprise Linux Desktop Version7.0
Redhat ≫ Enterprise Linux Server Version7.0
Redhat ≫ Enterprise Linux Server Aus Version6.4
Redhat ≫ Enterprise Linux Server Aus Version6.5
Redhat ≫ Enterprise Linux Server Aus Version6.6
Redhat ≫ Enterprise Linux Server Aus Version7.2
Redhat ≫ Enterprise Linux Server Aus Version7.3
Redhat ≫ Enterprise Linux Server Aus Version7.4
Redhat ≫ Enterprise Linux Server Eus Version6.4
Redhat ≫ Enterprise Linux Server Eus Version6.7
Redhat ≫ Enterprise Linux Server Eus Version7.2
Redhat ≫ Enterprise Linux Server Eus Version7.3
Redhat ≫ Enterprise Linux Server Eus Version7.4
Redhat ≫ Enterprise Linux Server Eus Version7.5
Redhat ≫ Enterprise Linux Server Tus Version6.6
Redhat ≫ Enterprise Linux Server Tus Version7.2
Redhat ≫ Enterprise Linux Server Tus Version7.3
Redhat ≫ Enterprise Linux Server Tus Version7.4
Redhat ≫ Enterprise Linux Workstation Version7.0
Linux ≫ Linux Kernel Version >= 4.9 < 4.18
Linux ≫ Linux Kernel Version4.18 Updaterc1
Linux ≫ Linux Kernel Version4.18 Updaterc2
Linux ≫ Linux Kernel Version4.18 Updaterc3
Linux ≫ Linux Kernel Version4.18 Updaterc4
Linux ≫ Linux Kernel Version4.18 Updaterc5
Linux ≫ Linux Kernel Version4.18 Updaterc6
Canonical ≫ Ubuntu Linux Version12.04 SwEditionesm
Canonical ≫ Ubuntu Linux Version14.04 SwEditionlts
Canonical ≫ Ubuntu Linux Version16.04 SwEditionlts
Canonical ≫ Ubuntu Linux Version18.04 SwEditionlts
Debian ≫ Debian Linux Version8.0
Debian ≫ Debian Linux Version9.0
Hp ≫ Aruba Airwave Amp Version < 8.2.7.1
Hp ≫ Aruba Clearpass Policy Manager Version >= 6.6.0 <= 6.6.9
Hp ≫ Aruba Clearpass Policy Manager Version >= 6.7.0 <= 6.7.5
F5 ≫ Big-ip Access Policy Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Access Policy Manager Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Access Policy Manager Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Access Policy Manager Version14.0.0
F5 ≫ Big-ip Advanced Firewall Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Advanced Firewall Manager Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Advanced Firewall Manager Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Advanced Firewall Manager Version14.0.0
F5 ≫ Big-ip Analytics Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Analytics Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Analytics Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Analytics Version14.0.0
F5 ≫ Big-ip Application Acceleration Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Application Acceleration Manager Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Application Acceleration Manager Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Application Acceleration Manager Version14.0.0
F5 ≫ Big-ip Application Security Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Application Security Manager Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Application Security Manager Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Application Security Manager Version14.0.0
F5 ≫ Big-ip Domain Name System Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Domain Name System Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Domain Name System Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Domain Name System Version14.0.0
F5 ≫ Big-ip Edge Gateway Version >= 11.5.1. <= 11.6.3
F5 ≫ Big-ip Edge Gateway Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Edge Gateway Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Edge Gateway Version14.0.0
F5 ≫ Big-ip Fraud Protection Service Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Fraud Protection Service Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Fraud Protection Service Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Fraud Protection Service Version14.0.0
F5 ≫ Big-ip Global Traffic Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Global Traffic Manager Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Global Traffic Manager Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Global Traffic Manager Version14.0.0
F5 ≫ Big-ip Link Controller Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Link Controller Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Link Controller Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Link Controller Version14.0.0
F5 ≫ Big-ip Local Traffic Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Local Traffic Manager Version >= 12.0.0 <= 12.1.3
F5 ≫ Big-ip Local Traffic Manager Version > 13.0.0 <= 13.1.1
F5 ≫ Big-ip Local Traffic Manager Version14.0.0
F5 ≫ Big-ip Policy Enforcement Manager Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Policy Enforcement Manager Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Policy Enforcement Manager Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Policy Enforcement Manager Version14.0.0
F5 ≫ Big-ip Webaccelerator Version >= 11.5.1 <= 11.6.3
F5 ≫ Big-ip Webaccelerator Version >= 12.1.0 <= 12.1.3
F5 ≫ Big-ip Webaccelerator Version >= 13.0.0 <= 13.1.1
F5 ≫ Big-ip Webaccelerator Version14.0.0
F5 ≫ Traffix Systems Signaling Delivery Controller Version >= 5.0.0 <= 5.1.0
F5 ≫ Traffix Systems Signaling Delivery Controller Version4.4.0
A10networks ≫ Advanced Core Operating System Version3.2.2
A10networks ≫ Advanced Core Operating System Version3.2.2 Updatep5
A10networks ≫ Advanced Core Operating System Version4.1.0
A10networks ≫ Advanced Core Operating System Version4.1.0 Updatep11
A10networks ≫ Advanced Core Operating System Version4.1.1 Updatep8
A10networks ≫ Advanced Core Operating System Version4.1.2
A10networks ≫ Advanced Core Operating System Version4.1.2 Updatep4
A10networks ≫ Advanced Core Operating System Version4.1.4
A10networks ≫ Advanced Core Operating System Version4.1.4 Updatep1
Cisco ≫ Collaboration Meeting Rooms Version1.0
Cisco ≫ Digital Network Architecture Center Version1.2
Cisco ≫ Expressway Versionx8.10
Cisco ≫ Expressway Versionx8.10.1
Cisco ≫ Expressway Versionx8.10.2
Cisco ≫ Expressway Versionx8.10.3
Cisco ≫ Expressway Versionx8.10.4
Cisco ≫ Expressway Versionx8.11
Cisco ≫ Expressway Series Version-
Cisco ≫ Meeting Management Version1.0
Cisco ≫ Meeting Management Version1.0.1
Cisco ≫ Network Assurance Engine Version2.1(1a)
Cisco ≫ Threat Grid-cloud Version-
Cisco ≫ Webex Hybrid Data Security Version-
Cisco ≫ Webex Video Mesh Version-
Cisco ≫ Telepresence Video Communication Server Firmware Versionx8.10
Cisco ≫ Telepresence Video Communication Server Firmware Versionx8.10.1
Cisco ≫ Telepresence Video Communication Server Firmware Versionx8.10.2
Cisco ≫ Telepresence Video Communication Server Firmware Versionx8.10.3
Cisco ≫ Telepresence Video Communication Server Firmware Versionx8.10.4
Cisco ≫ Telepresence Video Communication Server Firmware Versionx8.11
Cisco ≫ Telepresence Conductor Firmware Versionxc4.3
Cisco ≫ Telepresence Conductor Firmware Versionxc4.3.1
Cisco ≫ Telepresence Conductor Firmware Versionxc4.3.2
Cisco ≫ Telepresence Conductor Firmware Versionxc4.3.3
Cisco ≫ Telepresence Conductor Firmware Versionxc4.3.4
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 73.54% | 0.994 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
https://www.oracle.com/security-alerts/cpujul2020.html
http://www.openwall.com/lists/oss-security/2019/06/28/2
https://access.redhat.com/errata/RHSA-2018:2948
https://access.redhat.com/errata/RHSA-2018:2384
https://access.redhat.com/errata/RHSA-2018:2395
https://access.redhat.com/errata/RHSA-2018:2785
https://access.redhat.com/errata/RHSA-2018:2791
https://access.redhat.com/errata/RHSA-2018:2924
https://access.redhat.com/errata/RHSA-2018:2933
https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html
https://www.debian.org/security/2018/dsa-4266
https://usn.ubuntu.com/3742-1/
https://usn.ubuntu.com/3742-2/
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en
http://www.openwall.com/lists/oss-security/2019/07/06/3
http://www.openwall.com/lists/oss-security/2019/07/06/4
http://www.securityfocus.com/bid/104976
http://www.securitytracker.com/id/1041424
http://www.securitytracker.com/id/1041434
https://access.redhat.com/errata/RHSA-2018:2402
https://access.redhat.com/errata/RHSA-2018:2403
https://access.redhat.com/errata/RHSA-2018:2645
https://access.redhat.com/errata/RHSA-2018:2776
https://access.redhat.com/errata/RHSA-2018:2789
https://access.redhat.com/errata/RHSA-2018:2790
https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e
https://security.netapp.com/advisory/ntap-20180815-0003/
https://support.f5.com/csp/article/K95343321
https://support.f5.com/csp/article/K95343321?utm_source=f5support&%3Butm_medium=RSS
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp
https://usn.ubuntu.com/3732-1/
https://usn.ubuntu.com/3732-2/
https://usn.ubuntu.com/3741-1/
https://usn.ubuntu.com/3741-2/
https://usn.ubuntu.com/3763-1/
https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack
https://www.kb.cert.org/vuls/id/962459
https://www.synology.com/support/security/Synology_SA_18_41