Published: 18/09/2018 Updated: 09/10/2019

CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2

VMScore: 632

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel from 4.19-rc1 to 4.19-rc3 inclusive, which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial-of-service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 4.19

Synopsis Important: kernel-alt security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel-alt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...

A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragmentc in the Linux kernel which can cause a later system crash in ip_do_fragment() With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial of service ...

CWE-20 https://seclists.org/oss-sec/2018/q3/248 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5d407b071dc369c26a38398326ee2be53651cfe4 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14641 https://access.redhat.com/errata/RHSA-2018:2948 https://access.redhat.com/errata/RHSA-2018:2948 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2018-14641

CVE-2018-14641

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect