Security Advisory - FragmentSmack Vulnerability in Linux Kernel

2019-01-23T00:00:00
ID HUAWEI-SA-20190123-01-LINUX
Type huawei
Reporter Huawei Technologies
Modified 2020-08-05T00:00:00

Description

There is a DoS vulnerability in the Linux Kernel versions 3.9+ known as a FragmentSmack attack. Remote attackers could send fragmented IPv4 or IPv6 packets to the affected device to trigger time and calculation reassembly algorithms that could consume excessive CPU resources, resulting in a DoS condition. (Vulnerability ID: HWPSIRT-2018-08115) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2018-5391. Huawei has released software updates to fix this vulnerability. This advisory is available at the following link: http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190123-01-linux-en