starlingx
/
integ
Code Issues Proposed changes
integ/kernel
History
zhao.shuai 0d33fc27e2 Upgrade kernel to version kernel-3.10.0-957.21.3.el7 
Security Fix(es):
(CVE-2019-11477)-
An integer overflow flaw was found in the way
the Linux kernel's networking subsystem processed
TCP Selective Acknowledgment (SACK) segments.
While processing SACK segments,
the Linux kernel's socket buffer (SKB) data structure
becomes fragmented. Each fragment is about TCP
maximum segment size (MSS) bytes.
To efficiently process SACK blocks, the Linux kernel merges
multiple fragmented SKBs into one, potentially overflowing
the variable holding the number of segments.
A remote attacker could use this flaw to crash the Linux kernel
by sending a crafted sequence of SACK segments on a TCP
connection with small value of TCP MSS,
resulting in a denial of service (DoS).

(CVE-2019-11478)-
Kernel: tcp: excessive resource consumption while processing SACK
blocks allows remote denial of service.

(CVE-2019-11479)-
Kernel: tcp: excessive resource consumption for TCP connections with low MSS
allows remote denial of service.

Details:
https://access.redhat.com/errata/RHSA-2019:1481
https://access.redhat.com/errata/RHSA-2019:1486
https://nvd.nist.gov/vuln/detail/

Closes-Bug: 1836685
Depends-On: https://review.opendev.org/670856
Change-Id: I150bdf60cec23058e656c60a3fdd677a14259795
Signed-off-by: zhao.shuai <zhaos@neusoft.com>
 		2019-08-06 16:43:32 +08:00
..
kernel-modules Upversion ixgbe, ixgbevf drivers 2019-06-10 10:43:05 -05:00
kernel-rt epoll: fix use-after-free in eventpoll_release_file 2019-07-31 14:41:15 +08:00
kernel-std Upgrade kernel to version kernel-3.10.0-957.21.3.el7 2019-08-06 16:43:32 +08:00