vulnerability
SUSE: CVE-2018-5391: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Aug 14, 2018 | Aug 17, 2018 | Feb 4, 2022 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Aug 14, 2018
Added
Aug 17, 2018
Modified
Feb 4, 2022
Description
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size.
Solution(s)
suse-upgrade-kernel-azure-basesuse-upgrade-kernel-defaultsuse-upgrade-kernel-default-extrasuse-upgrade-kernel-default-mansuse-upgrade-kernel-devel-azuresuse-upgrade-kernel-docssuse-upgrade-kernel-docs-azuresuse-upgrade-kernel-obs-buildsuse-upgrade-kernel-source-azure
References
- SUSE-SUSE-SU-2018:2344-1
- SUSE-SUSE-SU-2018:2344-2
- SUSE-SUSE-SU-2018:2374-1
- SUSE-SUSE-SU-2018:2380-1
- SUSE-SUSE-SU-2018:2381-1
- SUSE-SUSE-SU-2018:2450-1
- SUSE-SUSE-SU-2018:2596-1
- SUSE-SUSE-SU-2018:3787-1
- SUSE-SUSE-SU-2018:3792-1
- SUSE-SUSE-SU-2018:3860-1
- SUSE-SUSE-SU-2018:3865-1
- SUSE-SUSE-SU-2018:3880-1
- SUSE-SUSE-SU-2018:3881-1
- SUSE-SUSE-SU-2019:0541-1
- SUSE-SUSE-SU-2019:0645-1
- SUSE-SUSE-SU-2019:0672-1
- SUSE-SUSE-SU-2019:1289-1
- UBUNTU-USN-3740-1
- UBUNTU-USN-3740-2
- UBUNTU-USN-3741-1
- UBUNTU-USN-3741-2
- UBUNTU-USN-3741-3
- UBUNTU-USN-3742-1
- UBUNTU-USN-3742-2
- UBUNTU-USN-3742-3
- DEBIAN-DSA-4272
- NVD-CVE-2018-5391
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.