CVE - CVE-2018-5390

CVE-ID
CVE-2018-5390	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:104976 URL:http://www.securityfocus.com/bid/104976 CERT-VN:VU#962459 URL:https://www.kb.cert.org/vuls/id/962459 CISCO:20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018 URL:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp CONFIRM:http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt URL:http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt CONFIRM:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en URL:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en CONFIRM:https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf URL:https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf CONFIRM:https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e URL:https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e CONFIRM:https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 URL:https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 CONFIRM:https://security.netapp.com/advisory/ntap-20180815-0003/ URL:https://security.netapp.com/advisory/ntap-20180815-0003/ CONFIRM:https://support.f5.com/csp/article/K95343321 URL:https://support.f5.com/csp/article/K95343321 CONFIRM:https://support.f5.com/csp/article/K95343321?utm_source=f5support&utm_medium=RSS URL:https://support.f5.com/csp/article/K95343321?utm_source=f5support&utm_medium=RSS CONFIRM:https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack URL:https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack CONFIRM:https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html URL:https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html CONFIRM:https://www.synology.com/support/security/Synology_SA_18_41 URL:https://www.synology.com/support/security/Synology_SA_18_41 DEBIAN:DSA-4266 URL:https://www.debian.org/security/2018/dsa-4266 MISC:https://www.oracle.com/security-alerts/cpujul2020.html URL:https://www.oracle.com/security-alerts/cpujul2020.html MLIST:[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update URL:https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html MLIST:[oss-security] 20190628 Re: linux-distros membership application - Microsoft URL:http://www.openwall.com/lists/oss-security/2019/06/28/2 MLIST:[oss-security] 20190706 Re: linux-distros membership application - Microsoft URL:http://www.openwall.com/lists/oss-security/2019/07/06/3 MLIST:[oss-security] 20190706 Re: linux-distros membership application - Microsoft URL:http://www.openwall.com/lists/oss-security/2019/07/06/4 REDHAT:RHSA-2018:2384 URL:https://access.redhat.com/errata/RHSA-2018:2384 REDHAT:RHSA-2018:2395 URL:https://access.redhat.com/errata/RHSA-2018:2395 REDHAT:RHSA-2018:2402 URL:https://access.redhat.com/errata/RHSA-2018:2402 REDHAT:RHSA-2018:2403 URL:https://access.redhat.com/errata/RHSA-2018:2403 REDHAT:RHSA-2018:2645 URL:https://access.redhat.com/errata/RHSA-2018:2645 REDHAT:RHSA-2018:2776 URL:https://access.redhat.com/errata/RHSA-2018:2776 REDHAT:RHSA-2018:2785 URL:https://access.redhat.com/errata/RHSA-2018:2785 REDHAT:RHSA-2018:2789 URL:https://access.redhat.com/errata/RHSA-2018:2789 REDHAT:RHSA-2018:2790 URL:https://access.redhat.com/errata/RHSA-2018:2790 REDHAT:RHSA-2018:2791 URL:https://access.redhat.com/errata/RHSA-2018:2791 REDHAT:RHSA-2018:2924 URL:https://access.redhat.com/errata/RHSA-2018:2924 REDHAT:RHSA-2018:2933 URL:https://access.redhat.com/errata/RHSA-2018:2933 REDHAT:RHSA-2018:2948 URL:https://access.redhat.com/errata/RHSA-2018:2948 SECTRACK:1041424 URL:http://www.securitytracker.com/id/1041424 SECTRACK:1041434 URL:http://www.securitytracker.com/id/1041434 UBUNTU:USN-3732-1 URL:https://usn.ubuntu.com/3732-1/ UBUNTU:USN-3732-2 URL:https://usn.ubuntu.com/3732-2/ UBUNTU:USN-3741-1 URL:https://usn.ubuntu.com/3741-1/ UBUNTU:USN-3741-2 URL:https://usn.ubuntu.com/3741-2/ UBUNTU:USN-3742-1 URL:https://usn.ubuntu.com/3742-1/ UBUNTU:USN-3742-2 URL:https://usn.ubuntu.com/3742-2/ UBUNTU:USN-3763-1 URL:https://usn.ubuntu.com/3763-1/
Assigning CNA
CERT/CC
Date Record Created
20180112	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20180112)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)