CVE-2019-11477
Description
Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
74.296
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2019-11477,CVE-2019-11478 are affected in Ivanti Connect Secure 2.3 | Windows |
| Multiple Vulnerabilities are affected in IBM Security Guardium 10.6 | Windows |
| Linux kernel (USN-4017-1) linux-image-aws_5.0.0.1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-aws_4.4.0.1085.88_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-aws_4.15.0.1041.40_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-aws_4.18.0.1018.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gcp_5.0.0.1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gcp_4.15.0.1034.36_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gcp_4.15.0.1034.48_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gcp_4.18.0.1013.13_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gke_5.0.0.1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gke_4.15.0.1034.48_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-gke_4.18.0.1013.13_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-kvm_5.0.0.1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-kvm_4.4.0.1048.48_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-kvm_4.15.0.1036.36_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-kvm_4.18.0.1014.14_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-oem_4.15.0.52.73_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-oem_4.15.0.1043.47_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-azure_4.15.0.1047.51_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-azure_4.18.0.1020.19_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-azure_4.18.0.1020.21_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-oracle_4.15.0.1015.9_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-oracle_4.15.0.1015.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-aws-hwe_4.15.0.1041.41_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_5.0.0.17.18_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_5.0.0.17.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_4.15.0.52.54_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_4.15.0.52.54_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_4.18.0.22.23_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_4.18.0.22.23_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_4.4.0.151.159_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic_4.4.0.151.159_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_5.0.0.17.18_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_5.0.0.17.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_4.15.0.52.54_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_4.15.0.52.54_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_4.18.0.22.23_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_4.18.0.22.23_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_4.4.0.151.159_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual_4.4.0.151.159_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_5.0.0.17.18_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_5.0.0.17.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_4.15.0.52.54_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_4.15.0.52.54_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_4.18.0.22.23_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_4.18.0.22.23_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_4.4.0.151.159_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency_4.4.0.151.159_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.4.0-1048-kvm_4.4.0-1048.55_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.4.0-1085-aws_4.4.0-1085.96_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-1008-aws_5.0.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-1008-gcp_5.0.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-1008-kvm_5.0.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1034-gcp_4.15.0-1034.36_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1034-gcp_4.15.0-1034.36~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1036-kvm_4.15.0-1036.36_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1041-aws_4.15.0-1041.43_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1041-aws_4.15.0-1041.43~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1043-oem_4.15.0-1043.48_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-1013-gcp_4.18.0-1013.14_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-1014-kvm_4.18.0-1014.14_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-1018-aws_4.18.0-1018.20_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-17-generic_5.0.0-17.18_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-17-generic_5.0.0-17.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1047-azure_4.15.0-1047.51_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-generic_4.15.0-52.56_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-generic_4.15.0-52.56_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-generic_4.15.0-52.56~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-generic_4.15.0-52.56~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-1020-azure_4.18.0-1020.20_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-1020-azure_4.18.0-1020.20~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-generic_4.18.0-22.23_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-generic_4.18.0-22.23_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-generic_4.18.0-22.23~18.04.1_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-generic_4.18.0-22.23~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.4.0-151-generic_4.4.0-151.178_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.4.0-151-generic_4.4.0-151.178_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic-hwe-16.04_4.15.0.52.73_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic-hwe-16.04_4.15.0.52.73_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic-hwe-18.04_4.18.0.22.72_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-generic-hwe-18.04_4.18.0.22.72_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual-hwe-16.04_4.15.0.52.73_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual-hwe-16.04_4.15.0.52.73_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual-hwe-18.04_4.18.0.22.72_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-virtual-hwe-18.04_4.18.0.22.72_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1015-oracle_4.15.0-1015.17_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-1015-oracle_4.15.0-1015.17~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-17-lowlatency_5.0.0-17.18_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-5.0.0-17-lowlatency_5.0.0-17.18_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-lowlatency_4.15.0-52.56_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-lowlatency_4.15.0-52.56_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-lowlatency_4.15.0-52.56~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.15.0-52-lowlatency_4.15.0-52.56~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-lowlatency_4.18.0-22.23_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-lowlatency_4.18.0-22.23_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-lowlatency_4.18.0-22.23~18.04.1_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.18.0-22-lowlatency_4.18.0-22.23~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.4.0-151-lowlatency_4.4.0-151.178_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-4.4.0-151-lowlatency_4.4.0-151.178_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency-hwe-16.04_4.15.0.52.73_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency-hwe-16.04_4.15.0.52.73_amd64.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency-hwe-18.04_4.18.0.22.72_i386.deb | Linux |
| Linux kernel (USN-4017-1) linux-image-lowlatency-hwe-18.04_4.18.0.22.72_amd64.deb | Linux |
| SUSE-SU-2019:14089-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.95.2.i586.rpm | Linux |
| SUSE-SU-2019:14089-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.95.2.x86_64.rpm | Linux |
| SUSE-SU-2019:14089-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.95.2.i586.rpm | Linux |
| SUSE-SU-2019:14089-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.95.2.x86_64.rpm | Linux |
| SUSE-SU-2019:14089-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.95.2.i586.rpm | Linux |
| SUSE-SU-2019:14089-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.95.2.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-debuginfo-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-debugsource-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-devel-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-devel-debuginfo-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-extra-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-default-extra-debuginfo-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-devel-4.12.14-95.19.1.noarch.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-macros-4.12.14-95.19.1.noarch.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-source-4.12.14-95.19.1.noarch.rpm | Linux |
| SUSE-SU-2019:1530-1(SUSE Linux Enterprise Desktop 12-SP4 ) kernel-syms-4.12.14-95.19.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-4.4.180-94.97.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-debuginfo-4.4.180-94.97.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-debugsource-4.4.180-94.97.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-devel-4.4.180-94.97.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-extra-4.4.180-94.97.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-extra-debuginfo-4.4.180-94.97.1.x86_64.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-devel-4.4.180-94.97.1.noarch.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-macros-4.4.180-94.97.1.noarch.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-source-4.4.180-94.97.1.noarch.rpm | Linux |
| SUSE-SU-2019:1532-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-syms-4.4.180-94.97.1.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.35.2.el6uek update (ELSA-2019-4686) dtrace-modules-3.8.13-118.35.2.el6uek-0.4.5-3.el6.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.35.2.el7uek update (ELSA-2019-4686) dtrace-modules-3.8.13-118.35.2.el7uek-0.4.5-3.el7.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2020-5913) kernel-uek-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2020-5913) kernel-uek-debug-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2020-5913) kernel-uek-debug-devel-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2020-5913) kernel-uek-devel-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-tools update (ELSA-2020-5913) kernel-uek-tools-4.14.35-2025.402.2.1.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2020-5913) kernel-uek-doc-4.14.35-2025.402.2.1.el7uek.noarch.rpm | Linux |
| Integer Overflow or Wraparound Vulnerability (CVE-2019-11477) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234