Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2020/03/06 12:0 a.m.108 views

Arista Networks EOS Linux Kernel TCP Multiple DoS (SA0041)

The version of Arista Networks EOS running on the remote device is affected by the following denial of service DoS vulnerabilities related to TCP networking in the Linux kernel, which can be exploited by a remote, unauthenticated attacker: - SACK Panic. The TCPSKBCBskb-tcpgsosegs value is subject...

7.8CVSS6.7AI score0.98745EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2019/09/25 12:0 a.m.48 views

F5 Networks BIG-IP : Linux SACK Panic vulnerability (K78234183)

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

7.8CVSS7.2AI score0.98745EPSS
Exploits4References2
OSV
OSV
added 2019/07/18 12:5 p.m.9 views

SUSE-SU-2019:1882-1 Security update for the Linux Kernel (Live Patch 10 for SLE 15)

This update for the Linux Kernel 4.12.14-15017 fixes several issues. The following security issues were fixed: - CVE-2019-11477: Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow when handling TCP Selective Acknowledgments SACKs. A remote attacker...

8.8CVSS8.3AI score0.98745EPSS
Exploits5References7
OSV
OSV
added 2019/06/21 1:7 a.m.7 views

MGASA-2019-0195 Updated kernel packages fix security vulnerability

This kernel update is based on the upstream 4.14.127 and fixes at least the following security issues: Jonathan Looney discovered that it is possible to send a crafted sequence of SACKs which will fragment the RACK send map. An attacker may be able to further exploit the fragmented send map to...

7.8CVSS7.5AI score0.98745EPSS
Exploits4References9
OSV
OSV
added 2019/06/19 12:15 a.m.4 views

CVE-2019-11477

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

7.5CVSS7.3AI score
Exploits0References29
Prion
Prion
added 2019/06/19 12:15 a.m.26 views

Integer overflow

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

7.8CVSS7.1AI score0.98745EPSS
Exploits4References29Affected Software20
Cvelist
Cvelist
added 2019/06/18 11:34 p.m.29 views

CVE-2019-11477 Integer overflow in TCP_SKB_CB(skb)->tcp_gso_segs

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

7.5CVSS7.5AI score0.98745EPSS
Exploits4References29
Tenable Nessus
Tenable Nessus
added 2019/06/18 12:0 a.m.42 views

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2019-4689)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4689 advisory. - tcp: enforce tcpminsndmss in tcpmtuprobing Eric Dumazet Orabug: 29886601 CVE-2019-11477 - tcp: add tcpminsndmss sysctl Eric Dumazet Orabug:...

7.8CVSS6.9AI score0.98745EPSS
Exploits4References4
Rows per page
Query Builder