CVE-2018-5390: Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can…

high7.5CVSS 3.1

AVNACLPRNUINSUCNINAH

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Affected

122 ranges· showing 25

Vendor	Product	Version range	Fixed in
a10networks	advanced_core_operating_system	—	—
a10networks	advanced_core_operating_system	—	—
a10networks	advanced_core_operating_system	—	—
a10networks	advanced_core_operating_system	—	—
a10networks	advanced_core_operating_system	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
cisco	collaboration_meeting_rooms	—	—
cisco	digital_network_architecture_center	—	—
cisco	expressway	—	—
cisco	expressway	—	—
cisco	expressway	—	—
cisco	expressway	—	—
cisco	expressway	—	—
cisco	expressway	—	—
cisco	meeting_management	—	—
cisco	meeting_management	—	—
cisco	network_assurance_engine	—	—
cisco	telepresence_conductor_firmware	—	—
cisco	telepresence_conductor_firmware	—	—
cisco	telepresence_conductor_firmware	—	—
cisco	telepresence_conductor_firmware	—	—
cisco	telepresence_conductor_firmware	—	—

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

osv7.5HIGH