CVE-2019-11683 — Out-of-bounds Write in Kernel

CWE-787 — Out-of-bounds Write CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125 — Out-of-bounds Read8 documents7 sources

Severity

9.8CRITICALNVD

EPSS

10.0%

top 6.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Canonical Ubuntu Linux Debian Linux

Timeline

PublishedMay 2

Latest updateMay 24

Description

udp_gro_receive_segment in net/ipv4/udp_offload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service (slab-out-of-bounds memory corruption) or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka the "GRO packet of death" issue.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDlinux/linux_kernel5.0 — 5.0.13

▶debiandebian/linux

Also affects: Ubuntu Linux 19.04

Patches

Patch: git.kernel.org ↗Patch: www.spinics.net ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

GHSA

GHSA-v8g2-q4cj-f9mh: udp_gro_receive_segment in net/ipv4/udp_offload↗2022-05-24

▶

OSV

CVE-2019-11683: udp_gro_receive_segment in net/ipv4/udp_offload↗2019-05-02

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2019-05-14

▶

Red Hat

kernel: udp_gro_receive_segment in net/ipv4/udp_offload.c allows denial of service or other unspecified impact via UDP packets with 0 payload↗2019-05-01

▶

Debian

CVE-2019-11683: linux - udp_gro_receive_segment in net/ipv4/udp_offload.c in the Linux kernel 5.x before...↗2019

▶

💬Community

Bugzilla

CVE-2019-11683 kernel: udp_gro_receive_segment in net/ipv4/udp_offload.c allows denial of service or other unspecified impact via UDP packets with 0 payload↗2019-05-07

▶

Bugzilla

CVE-2019-11683 kernel: udp_gro_receive_segment in net/ipv4/udp_offload.c allows denial of service or other unspecified impact via UDP packets with 0 payload [fedora-all]↗2019-05-07

▶