TCP SACK Panic - Remote Denial of Service Kernel Vulnerabilities

A Netflix employee found three vulnerabilities in the network stack code for TCP. The most serious of the vulnerabilities allows a remote attacker to cause a kernel panic.

Several CVE IDs have been attached for these issues: CVE-2019-11477 identified as a major vulnerability, and CVE-2019-11478 and CVE-2019-11479 as moderate.

The first two vulnerabilities relate to SACK (Selective Acknowledgment) and MSS (Maximum Segment Size). Third only to MSS.

Source: linux.org.ru

Buy reliable hosting for sites with DDoS protection, VPS VDS servers πŸ”₯ Buy reliable website hosting with DDoS protection, VPS VDS servers | ProHoster