Vulnerability CVE-2019-11477: Information

Description

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2019-11477

Published: June 19, 2019

Modified: Feb. 28, 2024

Error type identifier: CWE-190

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
kernel-image-mp	sisyphus	5.1.12-alt1	6.8.12-alt1	ALT-PU-2019-2116-1	232752	Fixed
kernel-image-mp	p10	5.1.12-alt1	6.1.19-alt1	ALT-PU-2019-2116-1	232752	Fixed
kernel-image-mp	p9	5.1.12-alt1	5.12.16-alt1	ALT-PU-2019-2117-1	232756	Fixed
kernel-image-mp	c9f2	5.1.12-alt1	5.7.16-alt1	ALT-PU-2019-2117-1	232756	Fixed
kernel-image-mp	p11	5.1.12-alt1	6.8.8-alt1	ALT-PU-2019-2116-1	232752	Fixed
kernel-image-ovz-el	p8	2.6.32-alt168.M80P.2	2.6.32-alt170.M80P.1	ALT-PU-2019-2144-1	232713	Fixed
kernel-image-std-debug	sisyphus	4.19.55-alt1	6.1.93-alt1	ALT-PU-2019-2134-1	233077	Fixed
kernel-image-std-debug	c9f2	4.19.97-alt1	4.19.102-alt1	ALT-PU-2020-1070-1	244478	Fixed
kernel-image-std-debug	p11	4.19.55-alt1	6.1.91-alt1	ALT-PU-2019-2134-1	233077	Fixed
kernel-image-std-def	sisyphus	4.19.55-alt1	6.1.93-alt1	ALT-PU-2019-2136-1	233079	Fixed
kernel-image-std-def	p10	4.19.55-alt1	5.10.218-alt1	ALT-PU-2019-2136-1	233079	Fixed
kernel-image-std-def	p9	4.19.56-alt1	5.4.277-alt1	ALT-PU-2019-2157-1	233158	Fixed
kernel-image-std-def	p8	4.9.181-alt0.M80P.1	4.9.337-alt0.M80P.1	ALT-PU-2019-2086-1	232429	Fixed
kernel-image-std-def	c9f2	4.19.56-alt1	5.10.214-alt0.c9f.2	ALT-PU-2019-2157-1	233158	Fixed
kernel-image-std-def	c7	4.4.183-alt0.M70C.1	4.4.277-alt0.M70C.1	ALT-PU-2019-2175-1	233233	Fixed
kernel-image-std-def	p11	4.19.55-alt1	6.1.91-alt1	ALT-PU-2019-2136-1	233079	Fixed
kernel-image-std-pae	c9f2	4.19.56-alt1	4.19.72-alt1	ALT-PU-2019-2180-1	233161	Fixed
kernel-image-tegra	p9	4.9.140-alt2	4.9.140-alt2	ALT-PU-2019-2234-1	234165	Fixed
kernel-image-tegra	c9f2	4.9.140-alt2	4.9.140-alt2	ALT-PU-2019-2234-1	234165	Fixed
kernel-image-un-def	sisyphus	5.1.12-alt1	6.6.33-alt1	ALT-PU-2019-2120-1	232709	Fixed
kernel-image-un-def	p10	5.1.12-alt1	6.1.90-alt1	ALT-PU-2019-2120-1	232709	Fixed
kernel-image-un-def	p9	5.1.12-alt1	5.10.218-alt1	ALT-PU-2019-2311-1	232804	Fixed
kernel-image-un-def	p8	4.19.51-alt0.M80P.1	4.19.310-alt0.M80P.1	ALT-PU-2019-2084-1	232449	Fixed
kernel-image-un-def	c10f1	5.1.12-alt1	6.1.85-alt0.c10f.1	ALT-PU-2019-2120-1	232709	Fixed
kernel-image-un-def	c9f2	5.1.12-alt1	5.10.29-alt2	ALT-PU-2019-2311-1	232804	Fixed
kernel-image-un-def	c7	4.9.277-alt0.M70C.1	4.9.277-alt0.M70C.1	ALT-PU-2021-3032-1	281292	Fixed
kernel-image-un-def	p11	5.1.12-alt1	6.6.31-alt1	ALT-PU-2019-2120-1	232709	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md	Patch Third Party Advisory
https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic	Mitigation Third Party Advisory
https://access.redhat.com/security/vulnerabilities/tcpsack	Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=3b4929f65b0d8249f19a50245cd88ed1a2f78cff	Mailing List Patch Vendor Advisory
https://support.f5.com/csp/article/K78234183	Third Party Advisory
http://packetstormsecurity.com/files/153346/Kernel-Live-Patch-Security-Notice-LSN-0052-1.html	Third Party Advisory VDB Entry
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193	Third Party Advisory
VU#905115	Third Party Advisory US Government Resource
[oss-security] 20190620 Re: Linux and FreeBSD Kernel: Multiple TCP-based remote denial of service issues	Mailing List Third Party Advisory
https://www.synology.com/security/advisory/Synology_SA_19_28	Third Party Advisory
https://security.netapp.com/advisory/ntap-20190625-0001/	Third Party Advisory
RHSA-2019:1594	Third Party Advisory
RHSA-2019:1602	Third Party Advisory
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0006	Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10287	Third Party Advisory
[oss-security] 20190628 Re: linux-distros membership application - Microsoft	Mailing List Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2019-0010.html	Third Party Advisory
[oss-security] 20190706 Re: linux-distros membership application - Microsoft	Mailing List Third Party Advisory
[oss-security] 20190706 Re: linux-distros membership application - Microsoft	Mailing List Third Party Advisory
RHSA-2019:1699	Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-462066.pdf	Third Party Advisory
https://www.us-cert.gov/ics/advisories/icsa-19-253-03	Third Party Advisory US Government Resource
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html	Third Party Advisory VDB Entry
[oss-security] 20191023 Membership application for linux-distros - VMware	Mailing List Third Party Advisory
[oss-security] 20191029 Re: Membership application for linux-distros - VMware	Mailing List Third Party Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-kernel-en	Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2020.html	Third Party Advisory
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txt	Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2020.html	Third Party Advisory

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  4.5
  End excliding
  4.9.182
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  4.10
  End excliding
  4.14.127
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  4.15
  End excliding
  4.19.52
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  4.20
  End excliding
  5.1.11
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  2.6.29
  End excliding
  3.16.69
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.17
  End excliding
  4.4.182
  
  Configuration 2
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 3
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_access_policy_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 4
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 5
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_link_controller:15.0.0:*:*:*:*:*:*:*
  
  Configuration 6
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 7
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_webaccelerator:15.0.0:*:*:*:*:*:*:*
  
  Configuration 8
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_application_security_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 9
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_local_traffic_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 10
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_fraud_protection_service:15.0.0:*:*:*:*:*:*:*
  
  Configuration 11
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_global_traffic_manager:15.0.0:*:*:*:*:*:*:*
  
  Configuration 12
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_analytics:15.0.0:*:*:*:*:*:*:*
  
  Configuration 13
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_edge_gateway:15.0.0:*:*:*:*:*:*:*
  
  Configuration 14
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.4
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.0
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.4
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.1
  cpe:2.3:a:f5:big-ip_domain_name_system:15.0.0:*:*:*:*:*:*:*
  
  Configuration 15
  cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
  
  Configuration 16
  cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_aus:6.6:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_aus:6.5:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:a:redhat:enterprise_linux_atomic_host:-:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*
  
  Configuration 17
  cpe:2.3:a:pulsesecure:pulse_policy_secure:-:*:*:*:*:*:*:*
  cpe:2.3:a:pulsesecure:pulse_secure_virtual_application_delivery_controller:-:*:*:*:*:*:*:*
  cpe:2.3:a:ivanti:connect_secure:-:*:*:*:*:*:*:*
  
  Configuration 18
  cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*
  Start including
  5.0.0
  End including
  5.1.0

Version: v24.5.3

Vulnerability CVE-2019-11477: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Configuration 5

Configuration 6

Configuration 7

Configuration 8

Configuration 9

Configuration 10

Configuration 11

Configuration 12

Configuration 13

Configuration 14

Configuration 15

Configuration 16

Configuration 17

Configuration 18