7.8

CVE-2018-5390

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RedhatVirtualization Version4.0
LinuxLinux Kernel Version >= 4.9 < 4.18
LinuxLinux Kernel Version4.18 Updaterc1
LinuxLinux Kernel Version4.18 Updaterc2
LinuxLinux Kernel Version4.18 Updaterc3
LinuxLinux Kernel Version4.18 Updaterc4
LinuxLinux Kernel Version4.18 Updaterc5
LinuxLinux Kernel Version4.18 Updaterc6
CanonicalUbuntu Linux Version12.04 SwEditionesm
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version16.04 SwEditionlts
CanonicalUbuntu Linux Version18.04 SwEditionlts
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
HpAruba Airwave Amp Version < 8.2.7.1
HpAruba Clearpass Policy Manager Version >= 6.6.0 <= 6.6.9
HpAruba Clearpass Policy Manager Version >= 6.7.0 <= 6.7.5
F5Big-ip Access Policy Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Access Policy Manager Version >= 12.1.0 <= 12.1.3
F5Big-ip Access Policy Manager Version >= 13.0.0 <= 13.1.1
F5Big-ip Access Policy Manager Version14.0.0
F5Big-ip Advanced Firewall Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Advanced Firewall Manager Version >= 12.1.0 <= 12.1.3
F5Big-ip Advanced Firewall Manager Version >= 13.0.0 <= 13.1.1
F5Big-ip Analytics Version >= 11.5.1 <= 11.6.3
F5Big-ip Analytics Version >= 12.1.0 <= 12.1.3
F5Big-ip Analytics Version >= 13.0.0 <= 13.1.1
F5Big-ip Analytics Version14.0.0
F5Big-ip Application Acceleration Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Application Acceleration Manager Version >= 12.1.0 <= 12.1.3
F5Big-ip Application Acceleration Manager Version >= 13.0.0 <= 13.1.1
F5Big-ip Application Security Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Application Security Manager Version >= 12.1.0 <= 12.1.3
F5Big-ip Application Security Manager Version >= 13.0.0 <= 13.1.1
F5Big-ip Domain Name System Version >= 11.5.1 <= 11.6.3
F5Big-ip Domain Name System Version >= 12.1.0 <= 12.1.3
F5Big-ip Domain Name System Version >= 13.0.0 <= 13.1.1
F5Big-ip Domain Name System Version14.0.0
F5Big-ip Edge Gateway Version >= 11.5.1. <= 11.6.3
F5Big-ip Edge Gateway Version >= 12.1.0 <= 12.1.3
F5Big-ip Edge Gateway Version >= 13.0.0 <= 13.1.1
F5Big-ip Edge Gateway Version14.0.0
F5Big-ip Fraud Protection Service Version >= 11.5.1 <= 11.6.3
F5Big-ip Fraud Protection Service Version >= 12.1.0 <= 12.1.3
F5Big-ip Fraud Protection Service Version >= 13.0.0 <= 13.1.1
F5Big-ip Global Traffic Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Global Traffic Manager Version >= 12.1.0 <= 12.1.3
F5Big-ip Global Traffic Manager Version >= 13.0.0 <= 13.1.1
F5Big-ip Global Traffic Manager Version14.0.0
F5Big-ip Link Controller Version >= 11.5.1 <= 11.6.3
F5Big-ip Link Controller Version >= 12.1.0 <= 12.1.3
F5Big-ip Link Controller Version >= 13.0.0 <= 13.1.1
F5Big-ip Link Controller Version14.0.0
F5Big-ip Local Traffic Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Local Traffic Manager Version >= 12.0.0 <= 12.1.3
F5Big-ip Local Traffic Manager Version > 13.0.0 <= 13.1.1
F5Big-ip Local Traffic Manager Version14.0.0
F5Big-ip Policy Enforcement Manager Version >= 11.5.1 <= 11.6.3
F5Big-ip Policy Enforcement Manager Version >= 12.1.0 <= 12.1.3
F5Big-ip Policy Enforcement Manager Version >= 13.0.0 <= 13.1.1
F5Big-ip Webaccelerator Version >= 11.5.1 <= 11.6.3
F5Big-ip Webaccelerator Version >= 12.1.0 <= 12.1.3
F5Big-ip Webaccelerator Version >= 13.0.0 <= 13.1.1
F5Big-ip Webaccelerator Version14.0.0
F5Traffix Systems Signaling Delivery Controller Version >= 5.0.0 <= 5.1.0
A10networksAdvanced Core Operating System Version3.2.2 Updatep5
A10networksAdvanced Core Operating System Version4.1.0 Updatep11
A10networksAdvanced Core Operating System Version4.1.1 Updatep8
A10networksAdvanced Core Operating System Version4.1.2 Updatep4
A10networksAdvanced Core Operating System Version4.1.4 Updatep1
CiscoExpressway Versionx8.10
CiscoExpressway Versionx8.10.1
CiscoExpressway Versionx8.10.2
CiscoExpressway Versionx8.10.3
CiscoExpressway Versionx8.10.4
CiscoExpressway Versionx8.11
CiscoExpressway Series Version-
CiscoMeeting Management Version1.0
CiscoMeeting Management Version1.0.1
CiscoNetwork Assurance Engine Version2.1(1a)
CiscoThreat Grid-cloud Version-
CiscoWebex Video Mesh Version-
CiscoTelepresence Conductor Firmware Versionxc4.3.1
   CiscoTelepresence Conductor Version-
CiscoTelepresence Conductor Firmware Versionxc4.3.2
   CiscoTelepresence Conductor Version-
CiscoTelepresence Conductor Firmware Versionxc4.3.3
   CiscoTelepresence Conductor Version-
CiscoTelepresence Conductor Firmware Versionxc4.3.4
   CiscoTelepresence Conductor Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 73.54% 0.994
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
Patch
Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2020.html
Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/06/28/2
Third Party Advisory
Mailing List
https://access.redhat.com/errata/RHSA-2018:2948
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2384
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2395
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2785
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2791
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2924
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2933
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html
Third Party Advisory
https://www.debian.org/security/2018/dsa-4266
Third Party Advisory
https://usn.ubuntu.com/3742-1/
Third Party Advisory
https://usn.ubuntu.com/3742-2/
Third Party Advisory
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt
Third Party Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en
Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/07/06/3
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2019/07/06/4
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/104976
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041424
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041434
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2018:2402
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2403
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2645
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2776
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2789
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2790
Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf
Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e
Patch
Vendor Advisory
https://security.netapp.com/advisory/ntap-20180815-0003/
Third Party Advisory
https://support.f5.com/csp/article/K95343321
Third Party Advisory
https://support.f5.com/csp/article/K95343321?utm_source=f5support&amp%3Butm_medium=RSS
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp
Third Party Advisory
https://usn.ubuntu.com/3732-1/
Third Party Advisory
https://usn.ubuntu.com/3732-2/
Third Party Advisory
https://usn.ubuntu.com/3741-1/
Third Party Advisory
https://usn.ubuntu.com/3741-2/
Third Party Advisory
https://usn.ubuntu.com/3763-1/
Third Party Advisory
https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack
Third Party Advisory
Mitigation
https://www.kb.cert.org/vuls/id/962459
Third Party Advisory
US Government Resource
https://www.synology.com/support/security/Synology_SA_18_41
Third Party Advisory