Lucene search

K
huaweiHuawei TechnologiesHUAWEI-SA-20191225-01-KERNEL
HistoryDec 26, 2019 - 12:00 a.m.

Security Advisory - Integer Overflow Vulnerability in the Linux Kernel (SACK Panic)

2019-12-2600:00:00
Huawei Technologies
www.huawei.com
199

0.972 High

EPSS

Percentile

99.8%

An integer overflow vulnerability was found in the way the Linux kernel’s networking subsystem processed TCP Selective Acknowledgment (SACK) segments. A remote attacker could use this to cause a denial of service. (Vulnerability ID: HWPSIRT-2019-06130)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2019-11477.

Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-kernel-en