Home

CVE-2018-5390

Description

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
6.836

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-3732-1) linux-image-aws_4.15.0.1017.17_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-gcp_4.15.0.1015.17_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-gke_4.15.0.1015.17_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-kvm_4.15.0.1017.17_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-oem_4.15.0.1013.15_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-azure_4.15.0.1019.19_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-generic_4.15.0.30.32_i386.debLinux
Linux kernel (USN-3732-1) linux-image-generic_4.15.0.30.32_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-azure-edge_4.15.0.1019.19_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-lowlatency_4.15.0.30.32_i386.debLinux
Linux kernel (USN-3732-1) linux-image-lowlatency_4.15.0.30.32_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-1013-oem_4.15.0-1013.16_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-1015-gcp_4.15.0-1015.15_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-1017-aws_4.15.0-1017.17_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-1017-kvm_4.15.0-1017.17_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-1019-azure_4.15.0-1019.19_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-30-generic_4.15.0-30.32_i386.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-30-generic_4.15.0-30.32_amd64.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-30-lowlatency_4.15.0-30.32_i386.debLinux
Linux kernel (USN-3732-1) linux-image-4.15.0-30-lowlatency_4.15.0-30.32_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-azure_4.15.0.1019.25_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-4.15.0-1015-gcp_4.15.0-1015.15~16.04.1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-4.15.0-1019-azure_4.15.0-1019.19~16.04.1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-4.15.0-30-generic_4.15.0-30.32~16.04.1_i386.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-4.15.0-30-generic_4.15.0-30.32~16.04.1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-generic-hwe-16.04_4.15.0.30.52_i386.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-generic-hwe-16.04_4.15.0.30.52_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-4.15.0-30-lowlatency_4.15.0-30.32~16.04.1_i386.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-4.15.0-30-lowlatency_4.15.0-30.32~16.04.1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-lowlatency-hwe-16.04_4.15.0.30.52_i386.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-3732-2) linux-image-lowlatency-hwe-16.04_4.15.0.30.52_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-aws_4.4.0.1065.67_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-kvm_4.4.0.1031.30_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-generic_4.4.0.133.139_i386.debLinux
Linux kernel (USN-3741-1) linux-image-generic_4.4.0.133.139_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-lowlatency_4.4.0.133.139_i386.debLinux
Linux kernel (USN-3741-1) linux-image-lowlatency_4.4.0.133.139_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-4.4.0-1031-kvm_4.4.0-1031.37_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-4.4.0-1065-aws_4.4.0-1065.75_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-4.4.0-133-generic_4.4.0-133.159_i386.debLinux
Linux kernel (USN-3741-1) linux-image-4.4.0-133-generic_4.4.0-133.159_amd64.debLinux
Linux kernel (USN-3741-1) linux-image-4.4.0-133-lowlatency_4.4.0-133.159_i386.debLinux
Linux kernel (USN-3741-1) linux-image-4.4.0-133-lowlatency_4.4.0-133.159_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3741-2) linux-image-aws_4.4.0.1027.27_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3741-2) linux-image-4.4.0-1027-aws_4.4.0-1027.30_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3741-2) linux-image-4.4.0-133-generic_4.4.0-133.159~14.04.1_i386.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3741-2) linux-image-4.4.0-133-generic_4.4.0-133.159~14.04.1_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3741-2) linux-image-4.4.0-133-lowlatency_4.4.0-133.159~14.04.1_i386.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3741-2) linux-image-4.4.0-133-lowlatency_4.4.0-133.159~14.04.1_amd64.debLinux
Linux kernel (USN-3742-1) linux-image-3.13.0-155-generic_3.13.0-155.205_i386.debLinux
Linux kernel (USN-3742-1) linux-image-3.13.0-155-generic_3.13.0-155.205_amd64.debLinux
Linux kernel (USN-3742-1) linux-image-3.13.0-155-lowlatency_3.13.0-155.205_i386.debLinux
Linux kernel (USN-3742-1) linux-image-3.13.0-155-lowlatency_3.13.0-155.205_amd64.debLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-abi-whitelists-3.10.0-693.39.1.el7.noarch.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-debug-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-debug-devel-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-devel-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-doc-3.10.0-693.39.1.el7.noarch.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-headers-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-tools-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-tools-libs-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update perf-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2776) kernel security and bug fix update python-perf-3.10.0-693.39.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-abi-whitelists-3.10.0-514.58.1.el7.noarch.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-debug-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-debug-devel-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-devel-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-doc-3.10.0-514.58.1.el7.noarch.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-headers-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-tools-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-tools-libs-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update perf-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2785) kernel security and bug fix update python-perf-3.10.0-514.58.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-abi-whitelists-3.10.0-327.73.1.el7.noarch.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-debug-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-debug-devel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-devel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-doc-3.10.0-327.73.1.el7.noarch.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-headers-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-tools-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-tools-libs-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update perf-3.10.0-327.73.1.el7.x86_64.rpmLinux
(RHSA-2018:2790) kernel security and bug fix update python-perf-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-debug-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-debug-devel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-devel-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-headers-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-tools-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-tools-libs-3.10.0-327.73.1.el7.x86_64.rpmLinux
(CESA-2018:2790) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-327.73.1.el7.x86_64.rpmLinux
Vulnerabilities CVE-2018-5390 are affected in aruba_clearpass_policy_manager 6.7.5NCM
Uncontrolled Resource Consumption Vulnerability (CVE-2018-5390)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234