CVE-2018-5391
Summary
| CVE | CVE-2018-5391 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-09-06 21:29:00 UTC |
| Updated | 2023-11-07 02:58:00 UTC |
| Description | The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Canonical | Ubuntu Linux | 12.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 14.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 16.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 18.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 12.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 14.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 16.04 | All | All | All |
| Operating System | Canonical | Ubuntu Linux | 18.04 | All | All | All |
| Operating System | Debian | Debian Linux | 8.0 | All | All | All |
| Operating System | Debian | Debian Linux | 9.0 | All | All | All |
| Operating System | Debian | Debian Linux | 8.0 | All | All | All |
| Operating System | Debian | Debian Linux | 9.0 | All | All | All |
| Application | F5 | Big-ip Access Policy Manager | All | All | All | All |
| Application | F5 | Big-ip Advanced Firewall Manager | All | All | All | All |
| Application | F5 | Big-ip Analytics | All | All | All | All |
| Application | F5 | Big-ip Application Acceleration Manager | All | All | All | All |
| Application | F5 | Big-ip Application Security Manager | All | All | All | All |
| Application | F5 | Big-ip Domain Name System | All | All | All | All |
| Application | F5 | Big-ip Edge Gateway | All | All | All | All |
| Application | F5 | Big-ip Fraud Protection Service | All | All | All | All |
| Application | F5 | Big-ip Global Traffic Manager | All | All | All | All |
| Application | F5 | Big-ip Link Controller | All | All | All | All |
| Application | F5 | Big-ip Local Traffic Manager | All | All | All | All |
| Application | F5 | Big-ip Policy Enforcement Manager | All | All | All | All |
| Application | F5 | Big-ip Webaccelerator | All | All | All | All |
| Operating System | Linux | Linux Kernel | All | All | All | All |
| Operating System | Microsoft | Windows 10 | - | All | All | All |
| Operating System | Microsoft | Windows 10 | 1607 | All | All | All |
| Operating System | Microsoft | Windows 10 | 1703 | All | All | All |
| Operating System | Microsoft | Windows 10 | 1709 | All | All | All |
| Operating System | Microsoft | Windows 10 | 1803 | All | All | All |
| Operating System | Microsoft | Windows 7 | - | sp1 | All | All |
| Operating System | Microsoft | Windows 8.1 | - | All | All | All |
| Operating System | Microsoft | Windows Rt 8.1 | - | All | All | All |
| Operating System | Microsoft | Windows Server 2008 | - | sp2 | All | All |
| Operating System | Microsoft | Windows Server 2008 | r2 | sp1 | All | All |
| Operating System | Microsoft | Windows Server 2008 | r2 | sp1 | All | All |
| Operating System | Microsoft | Windows Server 2012 | - | All | All | All |
| Operating System | Microsoft | Windows Server 2012 | r2 | All | All | All |
| Operating System | Microsoft | Windows Server 2016 | - | All | All | All |
| Operating System | Microsoft | Windows Server 2016 | 1709 | All | All | All |
| Operating System | Microsoft | Windows Server 2016 | 1803 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop | 7.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop | 7.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server | 7.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server | 7.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 6.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 6.5 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 6.6 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 7.2 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 7.3 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 7.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 6.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 6.5 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 6.6 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 7.2 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 7.3 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Aus | 7.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 6.7 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 7.3 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 7.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 7.5 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 6.7 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 7.3 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 7.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Eus | 7.5 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 6.6 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 7.2 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 7.3 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 7.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 6.6 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 7.2 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 7.3 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server Tus | 7.4 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation | 7.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation | 7.0 | All | All | All |
| Hardware | Siemens | Ruggedcom Rm1224 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rm1224 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Ii | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Ii Firmware | All | All | All | All |
| Hardware | Siemens | Scalance M-800 | - | All | All | All |
| Operating System | Siemens | Scalance M-800 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance S615 | - | All | All | All |
| Operating System | Siemens | Scalance S615 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Sc-600 | - | All | All | All |
| Operating System | Siemens | Scalance Sc-600 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance W1700 Ieee 802.11ac | - | All | All | All |
| Operating System | Siemens | Scalance W1700 Ieee 802.11ac Firmware | All | All | All | All |
| Hardware | Siemens | Scalance W700 Ieee 802.11a/b/g/n | - | All | All | All |
| Operating System | Siemens | Scalance W700 Ieee 802.11a/b/g/n Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1242-7 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1242-7 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1243-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1243-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1243-7 Lte Eu | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1243-7 Lte Eu Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1243-7 Lte Us | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1243-7 Lte Us Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1243-8 Irc | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1243-8 Irc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1542sp-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1542sp-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1542sp-1 Irc | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1542sp-1 Irc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1543-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1543-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1543sp-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1543sp-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf185c | - | All | All | All |
| Operating System | Siemens | Simatic Rf185c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf186c | - | All | All | All |
| Hardware | Siemens | Simatic Rf186ci | - | All | All | All |
| Operating System | Siemens | Simatic Rf186ci Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Rf186c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf188 | - | All | All | All |
| Hardware | Siemens | Simatic Rf188ci | - | All | All | All |
| Operating System | Siemens | Simatic Rf188ci Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Rf188 Firmware | All | All | All | All |
| Hardware | Siemens | Sinema Remote Connect Server | - | All | All | All |
| Operating System | Siemens | Sinema Remote Connect Server Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Linux Kernel IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| [SECURITY] [DLA 1466-1] linux-4.9 security update | MLIST | lists.debian.org | Mailing List, Mitigation, Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| Debian -- Security Information -- DSA-4272-1 linux | DEBIAN | www.debian.org | Mitigation, Third Party Advisory |
| www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt | CONFIRM | www.arubanetworks.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| [SECURITY] [DLA 1715-1] linux-4.9 security update | MLIST | lists.debian.org | |
| CVE-2018-5391 Linux Kernel Denial of Service Vulnerability in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | Third Party Advisory |
| Windows IP Fragment Reassembly Algorithm Lets Remote Users Consume Excessive CPU Resources on the Target System - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| USN-3740-2: Linux kernel (HWE) vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| USN-3742-1: Linux kernel vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| myF5 | support.f5.com | ||
| USN-3742-2: Linux kernel (Trusty HWE) vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| kernel/git/davem/net-next.git - David Miller's -next networking tree | MISC | git.kernel.org | Patch, Vendor Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| USN-3740-1: Linux kernel vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| USN-3741-2: Linux kernel (Xenial HWE) vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| oss-security - Re: linux-distros membership application - Microsoft | MLIST | www.openwall.com | |
| cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf | CONFIRM | cert-portal.siemens.com | |
| CERT Vulnerability Notes Database | CERT-VN | www.kb.cert.org | Third Party Advisory, US Government Resource |
| oss-security - Re: linux-distros membership application - Microsoft | MLIST | www.openwall.com | |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| USN-3741-1: Linux kernel vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| Linux Kernel CVE-2018-5391 Remote Denial of Service Vulnerability | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| Huawei - Building a Fully Connected, Intelligent World | CONFIRM | www.huawei.com | |
| oss-security - Re: linux-distros membership application - Microsoft | MLIST | www.openwall.com | |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| support.f5.com/csp/article/K74374841 | CONFIRM | support.f5.com | |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
LEGACY: Thanks to Juha-Matti Tilli (Aalto University, Department of Communications and Networking / Nokia Bell Labs) for reporting this vulnerability.
There are currently no legacy QID mappings associated with this CVE.