Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-5391

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size.

Published

2018-09-06T21:29:00.363

Last Modified

2024-11-21T04:08:43.897

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

6.9

Weaknesses

Type: Secondary
CWE-400
Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	≤ 4.18	Yes
Operating System	redhat	enterprise_linux_desktop	6.0	Yes
Operating System	redhat	enterprise_linux_desktop	7.0	Yes
Operating System	redhat	enterprise_linux_server	6.0	Yes
Operating System	redhat	enterprise_linux_server	7.0	Yes
Operating System	redhat	enterprise_linux_server_aus	6.4	Yes
Operating System	redhat	enterprise_linux_server_aus	6.5	Yes
Operating System	redhat	enterprise_linux_server_aus	6.6	Yes
Operating System	redhat	enterprise_linux_server_aus	7.2	Yes
Operating System	redhat	enterprise_linux_server_aus	7.3	Yes
Operating System	redhat	enterprise_linux_server_aus	7.4	Yes
Operating System	redhat	enterprise_linux_server_eus	6.7	Yes
Operating System	redhat	enterprise_linux_server_eus	7.3	Yes
Operating System	redhat	enterprise_linux_server_eus	7.4	Yes
Operating System	redhat	enterprise_linux_server_eus	7.5	Yes
Operating System	redhat	enterprise_linux_server_tus	6.6	Yes
Operating System	redhat	enterprise_linux_server_tus	7.2	Yes
Operating System	redhat	enterprise_linux_server_tus	7.3	Yes
Operating System	redhat	enterprise_linux_server_tus	7.4	Yes
Operating System	redhat	enterprise_linux_workstation	6.0	Yes
Operating System	redhat	enterprise_linux_workstation	7.0	Yes
Operating System	debian	debian_linux	8.0	Yes
Operating System	debian	debian_linux	9.0	Yes
Operating System	canonical	ubuntu_linux	12.04	Yes
Operating System	canonical	ubuntu_linux	14.04	Yes
Operating System	canonical	ubuntu_linux	16.04	Yes
Operating System	canonical	ubuntu_linux	18.04	Yes
Operating System	microsoft	windows_10	-	Yes
Operating System	microsoft	windows_10	1607	Yes
Operating System	microsoft	windows_10	1703	Yes
Operating System	microsoft	windows_10	1709	Yes
Operating System	microsoft	windows_10	1803	Yes
Operating System	microsoft	windows_7	-	Yes
Operating System	microsoft	windows_8.1	-	Yes
Operating System	microsoft	windows_rt_8.1	-	Yes
Operating System	microsoft	windows_server_2008	-	Yes
Operating System	microsoft	windows_server_2008	r2	Yes
Operating System	microsoft	windows_server_2008	r2	Yes
Operating System	microsoft	windows_server_2012	-	Yes
Operating System	microsoft	windows_server_2012	r2	Yes
Operating System	microsoft	windows_server_2016	-	Yes
Operating System	microsoft	windows_server_2016	1709	Yes
Operating System	microsoft	windows_server_2016	1803	Yes
Application	f5	big-ip_access_policy_manager	< 11.6.5.1	Yes
Application	f5	big-ip_access_policy_manager	< 12.1.5	Yes
Application	f5	big-ip_access_policy_manager	< 13.1.3	Yes
Application	f5	big-ip_access_policy_manager	< 14.0.1.1	Yes
Application	f5	big-ip_access_policy_manager	< 14.1.2.4	Yes
Application	f5	big-ip_advanced_firewall_manager	< 11.6.5.1	Yes
Application	f5	big-ip_advanced_firewall_manager	< 12.1.5	Yes
Application	f5	big-ip_advanced_firewall_manager	< 13.1.3	Yes
Application	f5	big-ip_advanced_firewall_manager	< 14.0.1.1	Yes
Application	f5	big-ip_advanced_firewall_manager	< 14.1.2.4	Yes
Application	f5	big-ip_analytics	< 11.6.5.1	Yes
Application	f5	big-ip_analytics	< 12.1.5	Yes
Application	f5	big-ip_analytics	< 13.1.3	Yes
Application	f5	big-ip_analytics	< 14.0.1.1	Yes
Application	f5	big-ip_analytics	< 14.1.2.4	Yes
Application	f5	big-ip_application_acceleration_manager	< 11.6.5.1	Yes
Application	f5	big-ip_application_acceleration_manager	< 12.1.5	Yes
Application	f5	big-ip_application_acceleration_manager	< 13.1.3	Yes
Application	f5	big-ip_application_acceleration_manager	< 14.0.1.1	Yes
Application	f5	big-ip_application_acceleration_manager	< 14.1.2.4	Yes
Application	f5	big-ip_application_security_manager	< 11.6.5.1	Yes
Application	f5	big-ip_application_security_manager	< 12.1.5	Yes
Application	f5	big-ip_application_security_manager	< 13.1.3	Yes
Application	f5	big-ip_application_security_manager	< 14.0.1.1	Yes
Application	f5	big-ip_application_security_manager	< 14.1.2.4	Yes
Application	f5	big-ip_domain_name_system	< 11.6.5.1	Yes
Application	f5	big-ip_domain_name_system	< 12.1.5	Yes
Application	f5	big-ip_domain_name_system	< 13.1.3	Yes
Application	f5	big-ip_domain_name_system	< 14.0.1.1	Yes
Application	f5	big-ip_domain_name_system	< 14.1.2.4	Yes
Application	f5	big-ip_edge_gateway	< 11.6.5.1	Yes
Application	f5	big-ip_edge_gateway	< 12.1.5	Yes
Application	f5	big-ip_edge_gateway	< 13.1.3	Yes
Application	f5	big-ip_edge_gateway	< 14.0.1.1	Yes
Application	f5	big-ip_edge_gateway	< 14.1.2.4	Yes
Application	f5	big-ip_fraud_protection_service	< 11.6.5.1	Yes
Application	f5	big-ip_fraud_protection_service	< 12.1.5	Yes
Application	f5	big-ip_fraud_protection_service	< 13.1.3	Yes
Application	f5	big-ip_fraud_protection_service	< 14.0.1.1	Yes
Application	f5	big-ip_fraud_protection_service	< 14.1.2.4	Yes
Application	f5	big-ip_global_traffic_manager	< 11.6.5.1	Yes
Application	f5	big-ip_global_traffic_manager	< 12.1.5	Yes
Application	f5	big-ip_global_traffic_manager	< 13.1.3	Yes
Application	f5	big-ip_global_traffic_manager	< 14.0.1.1	Yes
Application	f5	big-ip_global_traffic_manager	< 14.1.2.4	Yes
Application	f5	big-ip_link_controller	< 11.6.5.1	Yes
Application	f5	big-ip_link_controller	< 12.1.5	Yes
Application	f5	big-ip_link_controller	< 13.1.3	Yes
Application	f5	big-ip_link_controller	< 14.0.1.1	Yes
Application	f5	big-ip_link_controller	< 14.1.2.4	Yes
Application	f5	big-ip_local_traffic_manager	< 11.6.5.1	Yes
Application	f5	big-ip_local_traffic_manager	< 12.1.5	Yes
Application	f5	big-ip_local_traffic_manager	< 13.1.3	Yes
Application	f5	big-ip_local_traffic_manager	< 14.0.1.1	Yes
Application	f5	big-ip_local_traffic_manager	< 14.1.2.4	Yes
Application	f5	big-ip_policy_enforcement_manager	< 11.6.5.1	Yes
Application	f5	big-ip_policy_enforcement_manager	< 12.1.5	Yes
Application	f5	big-ip_policy_enforcement_manager	< 13.1.3	Yes
Application	f5	big-ip_policy_enforcement_manager	< 14.0.1.1	Yes
Application	f5	big-ip_policy_enforcement_manager	< 14.1.2.4	Yes
Application	f5	big-ip_webaccelerator	< 11.6.5.1	Yes
Application	f5	big-ip_webaccelerator	< 12.1.5	Yes
Application	f5	big-ip_webaccelerator	< 13.1.3	Yes
Application	f5	big-ip_webaccelerator	< 14.0.1.1	Yes
Application	f5	big-ip_webaccelerator	< 14.1.2.4	Yes
Operating System	siemens	ruggedcom_rm1224_firmware	< 6.1	Yes
Hardware	siemens	ruggedcom_rm1224	-	No
Operating System	siemens	ruggedcom_rox_ii_firmware	< 2.13.3	Yes
Hardware	siemens	ruggedcom_rox_ii	-	No
Operating System	siemens	scalance_m-800_firmware	< 6.1	Yes
Hardware	siemens	scalance_m-800	-	No
Operating System	siemens	scalance_s615_firmware	< 6.1	Yes
Hardware	siemens	scalance_s615	-	No
Operating System	siemens	scalance_sc-600_firmware	< 2.0	Yes
Hardware	siemens	scalance_sc-600	-	No
Operating System	siemens	scalance_w1700_ieee_802.11ac_firmware	< 2.0	Yes
Hardware	siemens	scalance_w1700_ieee_802.11ac	-	No
Operating System	siemens	scalance_w700_ieee_802.11a\/b\/g\/n_firmware	< 6.4	Yes
Hardware	siemens	scalance_w700_ieee_802.11a\/b\/g\/n	-	No
Operating System	siemens	simatic_net_cp_1242-7_firmware	< 3.2	Yes
Hardware	siemens	simatic_net_cp_1242-7	-	No
Operating System	siemens	simatic_net_cp_1243-1_firmware	< 3.2	Yes
Hardware	siemens	simatic_net_cp_1243-1	-	No
Operating System	siemens	simatic_net_cp_1243-7_lte_eu_firmware	< 3.2	Yes
Hardware	siemens	simatic_net_cp_1243-7_lte_eu	-	No
Operating System	siemens	simatic_net_cp_1243-7_lte_us_firmware	< 3.2	Yes
Hardware	siemens	simatic_net_cp_1243-7_lte_us	-	No
Operating System	siemens	simatic_net_cp_1243-8_irc_firmware	< 3.2	Yes
Hardware	siemens	simatic_net_cp_1243-8_irc	-	No
Operating System	siemens	simatic_net_cp_1542sp-1_firmware	< 2.1	Yes
Hardware	siemens	simatic_net_cp_1542sp-1	-	No
Operating System	siemens	simatic_net_cp_1542sp-1_irc_firmware	< 2.1	Yes
Hardware	siemens	simatic_net_cp_1542sp-1_irc	-	No
Operating System	siemens	simatic_net_cp_1543-1_firmware	< 2.2	Yes
Hardware	siemens	simatic_net_cp_1543-1	-	No
Operating System	siemens	simatic_net_cp_1543sp-1_firmware	< 2.1	Yes
Hardware	siemens	simatic_net_cp_1543sp-1	-	No
Operating System	siemens	simatic_rf185c_firmware	< 1.3	Yes
Hardware	siemens	simatic_rf185c	-	No
Operating System	siemens	simatic_rf186c_firmware	< 1.3	Yes
Hardware	siemens	simatic_rf186c	-	No
Operating System	siemens	simatic_rf186ci_firmware	< 1.3	Yes
Hardware	siemens	simatic_rf186ci	-	No
Operating System	siemens	simatic_rf188_firmware	< 1.3	Yes
Hardware	siemens	simatic_rf188	-	No
Operating System	siemens	simatic_rf188ci_firmware	< 1.3	Yes
Hardware	siemens	simatic_rf188ci	-	No
Operating System	siemens	sinema_remote_connect_server_firmware	< 2.0.1	Yes
Hardware	siemens	sinema_remote_connect_server	-	No

References

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt Third Party Advisory ([email protected])
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-en Broken Link ([email protected])
http://www.openwall.com/lists/oss-security/2019/06/28/2 Mailing List, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2019/07/06/3 Mailing List, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2019/07/06/4 Mailing List, Third Party Advisory ([email protected])
http://www.securityfocus.com/bid/105108 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1041476 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1041637 Third Party Advisory, VDB Entry ([email protected])
https://access.redhat.com/errata/RHSA-2018:2785 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2791 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2846 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2924 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2925 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2933 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2948 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:3083 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:3096 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:3459 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:3540 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:3586 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:3590 Third Party Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf Third Party Advisory ([email protected])
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f Patch, Vendor Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html Mailing List, Mitigation, Third Party Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html Mailing List, Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20181003-0002/ Third Party Advisory ([email protected])
https://support.f5.com/csp/article/K74374841?utm_source=f5support&amp%3Butm_medium=RSS ([email protected])
https://usn.ubuntu.com/3740-1/ Third Party Advisory ([email protected])
https://usn.ubuntu.com/3740-2/ Third Party Advisory ([email protected])
https://usn.ubuntu.com/3741-1/ Third Party Advisory ([email protected])
https://usn.ubuntu.com/3741-2/ Third Party Advisory ([email protected])
https://usn.ubuntu.com/3742-1/ Third Party Advisory ([email protected])
https://usn.ubuntu.com/3742-2/ Third Party Advisory ([email protected])
https://www.debian.org/security/2018/dsa-4272 Mitigation, Third Party Advisory ([email protected])
https://www.kb.cert.org/vuls/id/641765 Third Party Advisory, US Government Resource ([email protected])
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-en Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2019/06/28/2 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2019/07/06/3 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2019/07/06/4 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/105108 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1041476 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1041637 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2785 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2791 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2846 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2924 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2925 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2933 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2948 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:3083 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:3096 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:3459 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:3540 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:3586 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:3590 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html Mailing List, Mitigation, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20181003-0002/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.f5.com/csp/article/K74374841?utm_source=f5support&amp%3Butm_medium=RSS (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3740-1/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3740-2/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3741-1/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3741-2/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3742-1/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3742-2/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2018/dsa-4272 Mitigation, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.kb.cert.org/vuls/id/641765 Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)