CVE-2018-5390
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service
In short
An attacker can send specially crafted network packets to a Linux system running kernel 4.9 or later, forcing it to perform expensive processing for each packet, which can overwhelm the system and make it unresponsive to legitimate users.
Technical detail
A remote attacker can exploit algorithmic complexity in the TCP stack (CWE-400) by sending crafted out-of-order packets that trigger expensive tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() operations on every incoming packet, causing CPU exhaustion and denial of service without requiring authentication or special privileges.
Summary generated and translated by AI from the official description.
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.
Affected products
Linux · Linux KernelWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2018:2384https://access.redhat.com/errata/RHSA-2018:2395https://access.redhat.com/errata/RHSA-2018:2402https://access.redhat.com/errata/RHSA-2018:2403https://access.redhat.com/errata/RHSA-2018:2645https://access.redhat.com/errata/RHSA-2018:2776https://access.redhat.com/errata/RHSA-2018:2785https://access.redhat.com/errata/RHSA-2018:2789https://access.redhat.com/errata/RHSA-2018:2790https://access.redhat.com/errata/RHSA-2018:2791https://access.redhat.com/errata/RHSA-2018:2924https://access.redhat.com/errata/RHSA-2018:2933