{"containers":{"cna":{"affected":[{"product":"Kernel","vendor":"Linux","versions":[{"lessThan":"3.9*","status":"affected","version":"3.9","versionType":"custom"}]}],"credits":[{"lang":"en","value":"Thanks to Juha-Matti Tilli (Aalto University, Department of Communications and Networking / Nokia Bell Labs) for reporting this vulnerability."}],"datePublic":"2018-09-06T00:00:00.000Z","descriptions":[{"lang":"en","value":"The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size."}],"problemTypes":[{"descriptions":[{"cweId":"CWE-400","description":"CWE-400","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2020-04-14T12:06:39.000Z","orgId":"37e5125f-f79b-445b-8fad-9564f167944b","shortName":"certcc"},"references":[{"name":"RHSA-2018:3540","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:3540"},{"name":"RHSA-2018:2785","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2785"},{"name":"RHSA-2018:3083","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:3083"},{"name":"RHSA-2018:2925","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2925"},{"name":"VU#641765","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"https://www.kb.cert.org/vuls/id/641765"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"},{"name":"USN-3741-2","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3741-2/"},{"name":"1041476","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id/1041476"},{"name":"RHSA-2018:3459","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:3459"},{"tags":["x_refsource_MISC"],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f"},{"name":"RHSA-2018:2933","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2933"},{"name":"USN-3740-2","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3740-2/"},{"name":"USN-3741-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3741-1/"},{"name":"RHSA-2018:3590","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:3590"},{"name":"RHSA-2018:2948","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2948"},{"name":"USN-3742-2","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3742-2/"},{"name":"USN-3740-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3740-1/"},{"name":"105108","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/105108"},{"name":"[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update","tags":["mailing-list","x_refsource_MLIST"],"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"},{"name":"USN-3742-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"https://usn.ubuntu.com/3742-1/"},{"name":"RHSA-2018:2924","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2924"},{"name":"DSA-4272","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"https://www.debian.org/security/2018/dsa-4272"},{"name":"RHSA-2018:3586","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:3586"},{"name":"RHSA-2018:2846","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2846"},{"name":"1041637","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id/1041637"},{"name":"RHSA-2018:3096","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:3096"},{"name":"RHSA-2018:2791","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"https://access.redhat.com/errata/RHSA-2018:2791"},{"name":"[debian-lts-announce] 20190315 [SECURITY] [DLA 1715-1] linux-4.9 security update","tags":["mailing-list","x_refsource_MLIST"],"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html"},{"tags":["x_refsource_CONFIRM"],"url":"https://security.netapp.com/advisory/ntap-20181003-0002/"},{"name":"[oss-security] 20190628 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2019/06/28/2"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/3"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/4"},{"tags":["x_refsource_CONFIRM"],"url":"https://support.f5.com/csp/article/K74374841?utm_source=f5support&amp%3Butm_medium=RSS"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-en"},{"tags":["x_refsource_CONFIRM"],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"}],"source":{"discovery":"UNKNOWN"},"title":"The Linux kernel, versions 3.9+, IP implementation is vulnerable to denial of service conditions with low rates of specially modified packets","x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cert@cert.org","ID":"CVE-2018-5391","STATE":"PUBLIC","TITLE":"The Linux kernel, versions 3.9+, IP implementation is vulnerable to denial of service conditions with low rates of specially modified packets"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Kernel","version":{"version_data":[{"affected":">=","version_affected":">=","version_name":"3.9","version_value":"3.9"}]}}]},"vendor_name":"Linux"}]}},"credit":[{"lang":"eng","value":"Thanks to Juha-Matti Tilli (Aalto University, Department of Communications and Networking / Nokia Bell Labs) for reporting this vulnerability."}],"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-400"}]}]},"references":{"reference_data":[{"name":"RHSA-2018:3540","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:3540"},{"name":"RHSA-2018:2785","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2785"},{"name":"RHSA-2018:3083","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:3083"},{"name":"RHSA-2018:2925","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2925"},{"name":"VU#641765","refsource":"CERT-VN","url":"https://www.kb.cert.org/vuls/id/641765"},{"name":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt","refsource":"CONFIRM","url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"},{"name":"USN-3741-2","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3741-2/"},{"name":"1041476","refsource":"SECTRACK","url":"http://www.securitytracker.com/id/1041476"},{"name":"RHSA-2018:3459","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:3459"},{"name":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f","refsource":"MISC","url":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f"},{"name":"RHSA-2018:2933","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2933"},{"name":"USN-3740-2","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3740-2/"},{"name":"USN-3741-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3741-1/"},{"name":"RHSA-2018:3590","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:3590"},{"name":"RHSA-2018:2948","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2948"},{"name":"USN-3742-2","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3742-2/"},{"name":"USN-3740-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3740-1/"},{"name":"105108","refsource":"BID","url":"http://www.securityfocus.com/bid/105108"},{"name":"[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update","refsource":"MLIST","url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"},{"name":"USN-3742-1","refsource":"UBUNTU","url":"https://usn.ubuntu.com/3742-1/"},{"name":"RHSA-2018:2924","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2924"},{"name":"DSA-4272","refsource":"DEBIAN","url":"https://www.debian.org/security/2018/dsa-4272"},{"name":"RHSA-2018:3586","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:3586"},{"name":"RHSA-2018:2846","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2846"},{"name":"1041637","refsource":"SECTRACK","url":"http://www.securitytracker.com/id/1041637"},{"name":"RHSA-2018:3096","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:3096"},{"name":"RHSA-2018:2791","refsource":"REDHAT","url":"https://access.redhat.com/errata/RHSA-2018:2791"},{"name":"[debian-lts-announce] 20190315 [SECURITY] [DLA 1715-1] linux-4.9 security update","refsource":"MLIST","url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html"},{"name":"https://security.netapp.com/advisory/ntap-20181003-0002/","refsource":"CONFIRM","url":"https://security.netapp.com/advisory/ntap-20181003-0002/"},{"name":"[oss-security] 20190628 Re: linux-distros membership application - Microsoft","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2019/06/28/2"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2019/07/06/3"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2019/07/06/4"},{"name":"https://support.f5.com/csp/article/K74374841?utm_source=f5support&utm_medium=RSS","refsource":"CONFIRM","url":"https://support.f5.com/csp/article/K74374841?utm_source=f5support&utm_medium=RSS"},{"name":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-en","refsource":"CONFIRM","url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-en"},{"name":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf","refsource":"CONFIRM","url":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"}]},"source":{"discovery":"UNKNOWN"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T05:33:44.368Z"},"title":"CVE Program Container","references":[{"name":"RHSA-2018:3540","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:3540"},{"name":"RHSA-2018:2785","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2785"},{"name":"RHSA-2018:3083","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:3083"},{"name":"RHSA-2018:2925","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2925"},{"name":"VU#641765","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"https://www.kb.cert.org/vuls/id/641765"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"},{"name":"USN-3741-2","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3741-2/"},{"name":"1041476","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id/1041476"},{"name":"RHSA-2018:3459","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:3459"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f"},{"name":"RHSA-2018:2933","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2933"},{"name":"USN-3740-2","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3740-2/"},{"name":"USN-3741-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3741-1/"},{"name":"RHSA-2018:3590","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:3590"},{"name":"RHSA-2018:2948","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2948"},{"name":"USN-3742-2","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3742-2/"},{"name":"USN-3740-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3740-1/"},{"name":"105108","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/105108"},{"name":"[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"},{"name":"USN-3742-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"https://usn.ubuntu.com/3742-1/"},{"name":"RHSA-2018:2924","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2924"},{"name":"DSA-4272","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"https://www.debian.org/security/2018/dsa-4272"},{"name":"RHSA-2018:3586","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:3586"},{"name":"RHSA-2018:2846","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2846"},{"name":"1041637","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id/1041637"},{"name":"RHSA-2018:3096","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:3096"},{"name":"RHSA-2018:2791","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2018:2791"},{"name":"[debian-lts-announce] 20190315 [SECURITY] [DLA 1715-1] linux-4.9 security update","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://security.netapp.com/advisory/ntap-20181003-0002/"},{"name":"[oss-security] 20190628 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2019/06/28/2"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/3"},{"name":"[oss-security] 20190706 Re: linux-distros membership application - Microsoft","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2019/07/06/4"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://support.f5.com/csp/article/K74374841?utm_source=f5support&amp%3Butm_medium=RSS"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-linux-en"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"}]}]},"cveMetadata":{"assignerOrgId":"37e5125f-f79b-445b-8fad-9564f167944b","assignerShortName":"certcc","cveId":"CVE-2018-5391","datePublished":"2018-09-06T21:00:00.000Z","dateReserved":"2018-01-12T00:00:00.000Z","dateUpdated":"2024-08-05T05:33:44.368Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}