绿盟科技NSFOCUS安全漏洞系统

安全研究

安全漏洞

Linux kernel MSS值过低拒绝服务漏洞（CVE-2019-11479）

发布日期：2019-09-09
更新日期：2019-09-09

受影响系统：

Linux kernel < 5.1.11
Linux kernel < 4.9.182
Linux kernel < 4.4.182
Linux kernel < 4.19.52
Linux kernel < 4.14.127

描述：

BUGTRAQ ID: 108818
CVE(CAN) ID: CVE-2019-11479

Linux kernel是开源操作系统Linux所使用的内核。

Linux kernel由于默认MSS值硬编码为48位，会造成过多的报文碎片，远程攻击者可利用该漏洞引起CPU及网络接口资源耗尽，拒绝服务。

<*来源：Jonathan Looney
*>

建议：

厂商补丁：

Linux
-----
目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：

http://www.kernel.org/

参考：
URL:https://www.kb.cert.org/vuls/id/905115
CONFIRM:https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193
CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10287
CONFIRM:https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0008
CONFIRM:https://security.netapp.com/advisory/ntap-20190625-0001/
CONFIRM:https://support.f5.com/csp/article/K35421172
CONFIRM:https://www.synology.com/security/advisory/Synology_SA_19_28
MISC:https://access.redhat.com/security/vulnerabilities/tcpsack
MISC:https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=5f3e2bf008c2221478101ee72f5cb4654b9fc363
MISC:https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=967c05aee439e6e5d7d805e195b3a20ef5c433d6
MISC:https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md
MISC:https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic
MLIST:[oss-security] 20190628 Re: linux-distros membership application - Microsoft
URL:http://www.openwall.com/lists/oss-security/2019/06/28/2
MLIST:[oss-security] 20190706 Re: linux-distros membership application - Microsoft
URL:http://www.openwall.com/lists/oss-security/2019/07/06/3
MLIST:[oss-security] 20190706 Re: linux-distros membership application - Microsoft
URL:http://www.openwall.com/lists/oss-security/2019/07/06/4
REDHAT:RHSA-2019:1594
URL:https://access.redhat.com/errata/RHSA-2019:1594
REDHAT:RHSA-2019:1602
URL:https://access.redhat.com/errata/RHSA-2019:1602
REDHAT:RHSA-2019:1699
URL:https://access.redhat.com/errata/RHSA-2019:1699
UBUNTU:USN-4041-1
URL:https://usn.ubuntu.com/4041-1/
UBUNTU:USN-4041-2
URL:https://usn.ubuntu.com/4041-2/

浏览次数：1838
严重程度：0（网友投票）

关于我们: 公司介绍; 公司荣誉; 公司新闻

联系我们: 公司总部; 分支机构; 海外机构

快速链接: 绿盟云; 绿盟威胁情报中心NTI; 技术博客