CVE-2018-5391

high-risk

Published 2018-09-06

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size.

Do I need to act?

3.8% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (20)

Linux Kernel

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

Affected Vendors

Debian Redhat Microsoft Linux Siemens F5 Canonical

References (70)

Third Party Advisory http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt

Broken Link http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-e...

Mailing List http://www.openwall.com/lists/oss-security/2019/06/28/2

Mailing List http://www.openwall.com/lists/oss-security/2019/07/06/3

Mailing List http://www.openwall.com/lists/oss-security/2019/07/06/4

Third Party Advisory http://www.securityfocus.com/bid/105108

Third Party Advisory http://www.securitytracker.com/id/1041476

Third Party Advisory http://www.securitytracker.com/id/1041637

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2785

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2791

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2846

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2924

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2925

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2933

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:2948

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3083

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3096

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3459

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3540

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3586

and 50 more references

/ 100

high-risk

Severity 26/34 · High

Exploitability 7/34 · Low

Exposure 28/34 · Critical