CVE-2019-11477

CVE Database · CVE-2019-11477

CVE-2019-11477

· HIGHModified

CVSS v3.1

7.5

EPSS

98.75%

Published

Jun 18, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Weaknesses (CWE)

CWE-190CWE-190

Affected Products (91)

linux · linux_kernel (up to 3.16.69)vulnerable

linux · linux_kernel (up to 4.4.182)vulnerable

linux · linux_kernel (up to 4.9.182)vulnerable

linux · linux_kernel (up to 4.14.127)vulnerable

linux · linux_kernel (up to 4.19.52)vulnerable

linux · linux_kernel (up to 5.1.11)vulnerable

f5 · big-ip_advanced_firewall_managervulnerable