CVE-2019-11479

Published: Jun 19, 2019Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.

Affected (94)

Products: Linux: Linux Kernel · F5: Big Ip Advanced Firewall Manager, Big Ip Access Policy Manager, Big Ip Application Acceleration Manager, Big Ip Link Controller, Big Ip Policy Enforcement Manager, Big Ip Webaccelerator, Big Ip Application Security Manager, Big Ip Local Traffic Manager, Big Ip Fraud Protection Service, Big Ip Global Traffic Manager, Big Ip Analytics, Big Ip Edge Gateway, Big Ip Domain Name System, Big Iq Centralized Management, Enterprise Manager, Iworkflow, Traffix Signaling Delivery Controller · Canonical: Ubuntu Linux · +1 more

Show all products

Linux

1 product

Linux Kernel

17 products

Big Ip Advanced Firewall Manager

Big Ip Access Policy Manager

Big Ip Application Acceleration Manager

Big Ip Link Controller

Big Ip Policy Enforcement Manager

Big Ip Webaccelerator

Big Ip Application Security Manager

Big Ip Local Traffic Manager

Big Ip Fraud Protection Service

Big Ip Global Traffic Manager

Big Ip Analytics

Big Ip Edge Gateway

Big Ip Domain Name System

Big Iq Centralized Management

Enterprise Manager

Iworkflow

Traffix Signaling Delivery Controller

1 product

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 4.14 to 4.14.127
Linux Linux Kernel	From 4.19 to 4.19.52
Linux Linux Kernel	From 4.4 to 4.4.182
Linux Linux Kernel	From 4.9 to 4.9.182
Linux Linux Kernel	From 5.1 to 5.1.11

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Advanced Firewall Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Advanced Firewall Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Advanced Firewall Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Advanced Firewall Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Advanced Firewall Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Advanced Firewall Manager	From 15.0.0 to 15.0.1.1

Configuration C

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Access Policy Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Access Policy Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Access Policy Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Access Policy Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Access Policy Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Access Policy Manager	From 15.0.0 to 15.0.1.1

Configuration D

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Application Acceleration Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Application Acceleration Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Application Acceleration Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Application Acceleration Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Application Acceleration Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Application Acceleration Manager	From 15.0.0 to 15.0.1.1

Configuration E

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Link Controller	From 11.5.2 to 11.6.5.1
F5 Big Ip Link Controller	From 12.1.0 to 12.1.5.1
F5 Big Ip Link Controller	From 13.1.0 to 13.1.3.2
F5 Big Ip Link Controller	From 14.0.0 to 14.0.1.1
F5 Big Ip Link Controller	From 14.1.2 to 14.1.2.1
F5 Big Ip Link Controller	From 15.0.0 to 15.0.1.1

Configuration F

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Policy Enforcement Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Policy Enforcement Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Policy Enforcement Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Policy Enforcement Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Policy Enforcement Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Policy Enforcement Manager	From 15.0.0 to 15.0.1.1

Configuration G

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Webaccelerator	From 11.5.2 to 11.6.5.1
F5 Big Ip Webaccelerator	From 12.1.0 to 12.1.5.1
F5 Big Ip Webaccelerator	From 13.1.0 to 13.1.3.2
F5 Big Ip Webaccelerator	From 14.0.0 to 14.0.1.1
F5 Big Ip Webaccelerator	From 14.1.2 to 14.1.2.1
F5 Big Ip Webaccelerator	From 15.0.0 to 15.0.1.1

Configuration H

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Application Security Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Application Security Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Application Security Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Application Security Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Application Security Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Application Security Manager	From 15.0.0 to 15.0.1.1

Configuration I

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Local Traffic Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Local Traffic Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Local Traffic Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Local Traffic Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Local Traffic Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Local Traffic Manager	From 15.0.0 to 15.0.1.1

Configuration J

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Fraud Protection Service	From 11.5.2 to 11.6.5.1
F5 Big Ip Fraud Protection Service	From 12.1.0 to 12.1.5.1
F5 Big Ip Fraud Protection Service	From 13.1.0 to 13.1.3.2
F5 Big Ip Fraud Protection Service	From 14.0.0 to 14.0.1.1
F5 Big Ip Fraud Protection Service	From 14.1.2 to 14.1.2.1
F5 Big Ip Fraud Protection Service	From 15.0.0 to 15.0.1.1

Configuration K

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Global Traffic Manager	From 11.5.2 to 11.6.5.1
F5 Big Ip Global Traffic Manager	From 12.1.0 to 12.1.5.1
F5 Big Ip Global Traffic Manager	From 13.1.0 to 13.1.3.2
F5 Big Ip Global Traffic Manager	From 14.0.0 to 14.0.1.1
F5 Big Ip Global Traffic Manager	From 14.1.2 to 14.1.2.1
F5 Big Ip Global Traffic Manager	From 15.0.0 to 15.0.1.1

Configuration L

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Analytics	From 11.5.2 to 11.6.5.1
F5 Big Ip Analytics	From 12.1.0 to 12.1.5.1
F5 Big Ip Analytics	From 13.1.0 to 13.1.3.2
F5 Big Ip Analytics	From 14.0.0 to 14.0.1.1
F5 Big Ip Analytics	From 14.1.2 to 14.1.2.1
F5 Big Ip Analytics	From 15.0.0 to 15.0.1.1

Configuration M

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Edge Gateway	From 11.5.2 to 11.6.5.1
F5 Big Ip Edge Gateway	From 12.1.0 to 12.1.5.1
F5 Big Ip Edge Gateway	From 13.1.0 to 13.1.3.2
F5 Big Ip Edge Gateway	From 14.0.0 to 14.0.1.1
F5 Big Ip Edge Gateway	From 14.1.2 to 14.1.2.1
F5 Big Ip Edge Gateway	From 15.0.0 to 15.0.1.1

Configuration N

6 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Domain Name System	From 11.5.2 to 11.6.5.1
F5 Big Ip Domain Name System	From 12.1.0 to 12.1.5.1
F5 Big Ip Domain Name System	From 13.1.0 to 13.1.3.2
F5 Big Ip Domain Name System	From 14.0.0 to 14.0.1.1
F5 Big Ip Domain Name System	From 14.1.2 to 14.1.2.1
F5 Big Ip Domain Name System	From 15.0.0 to 15.0.1.1

Configuration O

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 18.10
Canonical Ubuntu Linux	Version 19.04

Configuration Q

5 vulnerable

Vulnerable Software	Affected Versions
F5 Big Iq Centralized Management	From 5.1.0 to 5.4.0
F5 Big Iq Centralized Management	From 6.0.0 to 6.1.0
F5 Enterprise Manager	Version 3.1.1
F5 Iworkflow	Version 2.3.0
F5 Traffix Signaling Delivery Controller	From 5.0.0 to 5.1.0

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Redhat Virtualization Host	Version 4.0

Running on/with	Platform Versions
Redhat Enterprise Linux	Version 7.0

Related CWEs

CWE-405

Asymmetric Resource Consumption (Amplification)

The product does not properly control situations in which an adversary can cause the product to consume or produce excessive resources without requiring the adversary to invest equivalent work or otherwise prove authorization, i.e., the adversary's influence is "asymmetric."

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (56)

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txt

Source: security@ubuntu.com

Third Party Advisory

http://www.openwall.com/lists/oss-security/2019/06/28/2

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2019/07/06/3

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2019/07/06/4

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/108818

Source: security@ubuntu.com

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2019:1594

Source: security@ubuntu.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1602

Source: security@ubuntu.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1699

Source: security@ubuntu.com

Third Party Advisory

https://access.redhat.com/security/vulnerabilities/tcpsack

Source: security@ubuntu.com

Third Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-462066.pdf

Source: security@ubuntu.com

Third Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=5f3e2bf008c2221478101ee72f5cb4654b9fc363

Source: security@ubuntu.com

Mailing ListPatchVendor Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=967c05aee439e6e5d7d805e195b3a20ef5c433d6

Source: security@ubuntu.com

Mailing ListPatchVendor Advisory

https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md

Source: security@ubuntu.com

PatchThird Party Advisory

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193

Source: security@ubuntu.com

Third Party Advisory

https://kc.mcafee.com/corporate/index?page=content&id=SB10287

Source: security@ubuntu.com

Third Party Advisory

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0008

Source: security@ubuntu.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20190625-0001/

Source: security@ubuntu.com

Third Party Advisory

https://support.f5.com/csp/article/K35421172

Source: security@ubuntu.com

Third Party Advisory

https://support.f5.com/csp/article/K35421172?utm_source=f5support&amp%3Butm_medium=RSS

Source: security@ubuntu.com

https://usn.ubuntu.com/4041-1/

Source: security@ubuntu.com

Third Party Advisory

https://usn.ubuntu.com/4041-2/

Source: security@ubuntu.com

Third Party Advisory

https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic

Source: security@ubuntu.com

MitigationThird Party Advisory

https://www.kb.cert.org/vuls/id/905115

Source: security@ubuntu.com

Third Party AdvisoryUS Government Resource

https://www.oracle.com/security-alerts/cpujan2020.html

Source: security@ubuntu.com

Third Party Advisory

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: security@ubuntu.com

https://www.synology.com/security/advisory/Synology_SA_19_28

Source: security@ubuntu.com

Third Party Advisory

https://www.us-cert.gov/ics/advisories/icsa-19-253-03

Source: security@ubuntu.com

Third Party AdvisoryUS Government Resource

https://www.us-cert.gov/ics/advisories/icsma-20-170-06

Source: security@ubuntu.com

Third Party AdvisoryUS Government Resource

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txt