{"containers":{"cna":{"affected":[{"product":"Linux Kernel","vendor":"Linux","versions":[{"lessThan":"4.9*","status":"affected","version":"4.9","versionType":"custom"}]}],"datePublic":"2018-07-23T00:00:00.000Z","descriptions":[{"lang":"en","value":"Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service."}],"problemTypes":[{"descriptions":[{"cweId":"CWE-400","description":"CWE-400","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2020-07-15T02:22:59.000Z","orgId":"37e5125f-f79b-445b-8fad-9564f167944b","shortName":"certcc"},"references":[{"name":"RHSA-2018:2785","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2785"},{"name":"VU#962459","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"https://www.kb.cert.org/vuls/id/962459"},{"name":"USN-3741-2","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3741-2/"},{"name":"RHSA-2018:2776","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2776"},{"name":"RHSA-2018:2933","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2933"},{"name":"RHSA-2018:2403","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2403"},{"name":"RHSA-2018:2395","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2395"},{"name":"USN-3763-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3763-1/"},{"name":"RHSA-2018:2384","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2384"},{"name":"USN-3741-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3741-1/"},{"name":"RHSA-2018:2402","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2402"},{"name":"RHSA-2018:2948","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2948"},{"name":"USN-3742-2","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3742-2/"},{"name":"1041434","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id/1041434"},{"name":"USN-3732-2","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3732-2/"},{"name":"104976","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/104976"},{"name":"[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update","tags":["mailing-list","x_refsource_MLIST"],"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"},{"name":"1041424","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id/1041424"},{"name":"USN-3742-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3742-1/"},{"name":"RHSA-2018:2924","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2924"},{"name":"20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018","tags":["vendor-advisory","x_refsource_CISCO"],"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp"},{"name":"RHSA-2018:2789","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2789"},{"name":"DSA-4266","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"https://www.debian.org/security/2018/dsa-4266"},{"name":"RHSA-2018:2645","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2645"},{"name":"USN-3732-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3732-1/"},{"name":"RHSA-2018:2791","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2791"},{"name":"RHSA-2018:2790","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2790"},{"name":"[oss-security] 20190628 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2019/06/28/2"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/3"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/4"},{"tags":["x_refsource_MISC"],"url":"https://www.oracle.com/security-alerts/cpujul2020.html"},{"tags":["x_refsource_CONFIRM"],"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"},{"tags":["x_refsource_CONFIRM"],"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"},{"tags":["x_refsource_CONFIRM"],"url":"https://security.netapp.com/advisory/ntap-20180815-0003/"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"},{"tags":["x_refsource_CONFIRM"],"url":"https://www.synology.com/support/security/Synology_SA_18_41"},{"tags":["x_refsource_CONFIRM"],"url":"https://support.f5.com/csp/article/K95343321"},{"tags":["x_refsource_CONFIRM"],"url":"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack"},{"tags":["x_refsource_CONFIRM"],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e"},{"tags":["x_refsource_CONFIRM"],"url":"https://support.f5.com/csp/article/K95343321?utm_source=f5support&amp%3Butm_medium=RSS"},{"tags":["x_refsource_CONFIRM"],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en"}],"source":{"discovery":"UNKNOWN"},"title":"Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service","x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cert@cert.org","ID":"CVE-2018-5390","STATE":"PUBLIC","TITLE":"Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Linux Kernel","version":{"version_data":[{"affected":">=","version_affected":">=","version_name":"4.9","version_value":"4.9"}]}}]},"vendor_name":"Linux"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-400"}]}]},"references":{"reference_data":[{"name":"RHSA-2018:2785","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2785"},{"name":"VU#962459","refsource":"CERT-VN","url":"https://www.kb.cert.org/vuls/id/962459"},{"name":"USN-3741-2","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3741-2/"},{"name":"RHSA-2018:2776","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2776"},{"name":"RHSA-2018:2933","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2933"},{"name":"RHSA-2018:2403","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2403"},{"name":"RHSA-2018:2395","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2395"},{"name":"USN-3763-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3763-1/"},{"name":"RHSA-2018:2384","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2384"},{"name":"USN-3741-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3741-1/"},{"name":"RHSA-2018:2402","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2402"},{"name":"RHSA-2018:2948","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2948"},{"name":"USN-3742-2","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3742-2/"},{"name":"1041434","refsource":"SECTRACK","url":"http://www.securitytracker.com/id/1041434"},{"name":"USN-3732-2","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3732-2/"},{"name":"104976","refsource":"BID","url":"http://www.securityfocus.com/bid/104976"},{"name":"[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update","refsource":"MLIST","url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"},{"name":"1041424","refsource":"SECTRACK","url":"http://www.securitytracker.com/id/1041424"},{"name":"USN-3742-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3742-1/"},{"name":"RHSA-2018:2924","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2924"},{"name":"20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018","refsource":"CISCO","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp"},{"name":"RHSA-2018:2789","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2789"},{"name":"DSA-4266","refsource":"DEBIAN","url":"https://www.debian.org/security/2018/dsa-4266"},{"name":"RHSA-2018:2645","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2645"},{"name":"USN-3732-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3732-1/"},{"name":"RHSA-2018:2791","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2791"},{"name":"RHSA-2018:2790","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2790"},{"name":"[oss-security] 20190628 Re: linux-distros membership application - Microsoft","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2019/06/28/2"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2019/07/06/3"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2019/07/06/4"},{"name":"https://www.oracle.com/security-alerts/cpujul2020.html","refsource":"MISC","url":"https://www.oracle.com/security-alerts/cpujul2020.html"},{"name":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","refsource":"CONFIRM","url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"},{"name":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","refsource":"CONFIRM","url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"},{"name":"https://security.netapp.com/advisory/ntap-20180815-0003/","refsource":"CONFIRM","url":"https://security.netapp.com/advisory/ntap-20180815-0003/"},{"name":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt","refsource":"CONFIRM","url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"},{"name":"https://www.synology.com/support/security/Synology_SA_18_41","refsource":"CONFIRM","url":"https://www.synology.com/support/security/Synology_SA_18_41"},{"name":"https://support.f5.com/csp/article/K95343321","refsource":"CONFIRM","url":"https://support.f5.com/csp/article/K95343321"},{"name":"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack","refsource":"CONFIRM","url":"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack"},{"name":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e","refsource":"CONFIRM","url":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e"},{"name":"https://support.f5.com/csp/article/K95343321?utm_source=f5support&utm_medium=RSS","refsource":"CONFIRM","url":"https://support.f5.com/csp/article/K95343321?utm_source=f5support&utm_medium=RSS"},{"name":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf","refsource":"CONFIRM","url":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"},{"name":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en","refsource":"CONFIRM","url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en"}]},"source":{"discovery":"UNKNOWN"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T05:33:44.409Z"},"title":"CVE Program Container","references":[{"name":"RHSA-2018:2785","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2785"},{"name":"VU#962459","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"https://www.kb.cert.org/vuls/id/962459"},{"name":"USN-3741-2","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3741-2/"},{"name":"RHSA-2018:2776","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2776"},{"name":"RHSA-2018:2933","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2933"},{"name":"RHSA-2018:2403","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2403"},{"name":"RHSA-2018:2395","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2395"},{"name":"USN-3763-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3763-1/"},{"name":"RHSA-2018:2384","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2384"},{"name":"USN-3741-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3741-1/"},{"name":"RHSA-2018:2402","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2402"},{"name":"RHSA-2018:2948","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2948"},{"name":"USN-3742-2","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3742-2/"},{"name":"1041434","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id/1041434"},{"name":"USN-3732-2","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3732-2/"},{"name":"104976","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/104976"},{"name":"[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"},{"name":"1041424","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id/1041424"},{"name":"USN-3742-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3742-1/"},{"name":"RHSA-2018:2924","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2924"},{"name":"20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018","tags":["vendor-advisory","x_refsource_CISCO","x_transferred"],"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp"},{"name":"RHSA-2018:2789","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2789"},{"name":"DSA-4266","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"https://www.debian.org/security/2018/dsa-4266"},{"name":"RHSA-2018:2645","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2645"},{"name":"USN-3732-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3732-1/"},{"name":"RHSA-2018:2791","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2791"},{"name":"RHSA-2018:2790","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2790"},{"name":"[oss-security] 20190628 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2019/06/28/2"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/3"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/4"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.oracle.com/security-alerts/cpujul2020.html"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://security.netapp.com/advisory/ntap-20180815-0003/"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.synology.com/support/security/Synology_SA_18_41"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://support.f5.com/csp/article/K95343321"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://support.f5.com/csp/article/K95343321?utm_source=f5support&amp%3Butm_medium=RSS"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en"}]}]},"cveMetadata":{"assignerOrgId":"37e5125f-f79b-445b-8fad-9564f167944b","assignerShortName":"certcc","cveId":"CVE-2018-5390","datePublished":"2018-08-06T20:00:00.000Z","dateReserved":"2018-01-12T00:00:00.000Z","dateUpdated":"2024-08-05T05:33:44.409Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}