CVE-2019-11479

HIGHScheduled

Published:Jun 19, 2019(6 years ago)

Modified:Nov 21, 2024

Remote ExploitNo Auth RequiredNo InteractionLow Complexity

Vulnerability Description

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.

Attack Characteristics

Network AccessLow ComplexityNo Auth NeededNo User Interaction

🤖

AI analysis not yet available

Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.

No Fix Known

No patch has been released yet. Apply workarounds or mitigations where available.

Affected Software

Vendor	Product	Versions	Fixed In
linux	linux_kernel	4.4 - 4.4.182	-
linux	linux_kernel	4.9 - 4.9.182	-
linux	linux_kernel	4.14 - 4.14.127

Timeline

Published
CVE disclosed publicly
Jun 19, 20196 years ago
Last Modified
Most recent update
Nov 21, 20241 year ago
Indexed to CVEInsight
Added to this platform
Mar 29, 20261 month ago

References

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txtThird Party Advisory
http://www.openwall.com/lists/oss-security/2019/06/28/2Mailing List
http://www.openwall.com/lists/oss-security/2019/07/06/3Mailing List

CVSS Score

v3.1

7.5/ 10.0

HIGH

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

At a Glance

Affected Products

References

linux / linux_kernel

http://www.openwall.com/lists/oss-security/2019/07/06/4Mailing List

http://www.securityfocus.com/bid/108818Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1594Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1602Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1699Third Party Advisory

https://access.redhat.com/security/vulnerabilities/tcpsackThird Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-462066.pdfThird Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?...Mailing List

https://github.com/Netflix/security-bulletins/blob/master/advisories/t...Patch

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193Third Party Advisory

https://kc.mcafee.com/corporate/index?page=content&id=SB10287Third Party Advisory

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0008Third Party Advisory

https://security.netapp.com/advisory/ntap-20190625-0001/Third Party Advisory

https://support.f5.com/csp/article/K35421172Third Party Advisory

https://support.f5.com/csp/article/K35421172?utm_source=f5support&amp%...

https://usn.ubuntu.com/4041-1/Third Party Advisory

https://usn.ubuntu.com/4041-2/Third Party Advisory

https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanicMitigation

https://www.kb.cert.org/vuls/id/905115Third Party Advisory

https://www.oracle.com/security-alerts/cpujan2020.htmlThird Party Advisory

https://www.oracle.com/security-alerts/cpuoct2020.html

https://www.synology.com/security/advisory/Synology_SA_19_28Third Party Advisory

https://www.us-cert.gov/ics/advisories/icsa-19-253-03Third Party Advisory

https://www.us-cert.gov/ics/advisories/icsma-20-170-06Third Party Advisory

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txtThird Party Advisory

http://www.openwall.com/lists/oss-security/2019/06/28/2Mailing List

http://www.openwall.com/lists/oss-security/2019/07/06/3Mailing List