A Netflix employee found three vulnerabilities in the network stack code for TCP. The most serious of the vulnerabilities allows a remote attacker to cause a kernel panic.
Several CVE IDs have been attached for these issues: CVE-2019-11477 identified as a major vulnerability, and CVE-2019-11478 and CVE-2019-11479 as moderate.
The first two vulnerabilities relate to SACK (Selective Acknowledgment) and MSS (Maximum Segment Size). Third only to MSS.
Source: linux.org.ru
