SUSE addresses the "SACK Panic" TCP remote denial of service attacks | SUSE Communities
< Back to Blog

SUSE addresses the “SACK Panic” TCP remote denial of service attacks

June 17, 2019 | By: Marcus Meissner

Share
Share

Security researchers from Netflix have identified three new remote denial of service attacks against the Linux TCP stack.
These can be all exploited remotely as soon as a TCP port is open to the public in default settings.

There are three distinct issues:

  • CVE-2019-11477: Also known as “SACK Panic”. A integer overflow when SACK processing of small TCP fragments can be used by remote attackers to crash the kernel.
  • CVE-2019-11478: By sending SACK segments in crafted order remote attackers could fragment the SACK queue and cause increased use of memory, potentially running the system out of memory, and higher CPU load.
  • CVE-2019-11479: A remote attacker could force heavy fragmentation of TCP segments, which could cause a higher amount of bandwith being used and also higher CPU load on the attacked system.

All SUSE Linux versions are affected by these problems.

SUSE has released security updates for all maintained distributions.

If you cannot install these updates right away, there are workarounds for the system or via firewalls, these are documented on our TID.

TID Link: TID 7023928

CVE links:

Share
(Visited 1 times, 1 visits today)

Comments

  • Guy Chapman says:
    June 19, 2019 at 2:31 am

    When are we expecting kernel patches to be released?

    Reply
  • Guy Chapman says:
    June 19, 2019 at 3:23 am

    Hi – the text in this article says “SUSE has released security updates for all maintained distributions.” – However on clicking through to the TID, it just gives workarounds….. Have kernel pacthes been released?

    Reply
    • Marcus Meissner says:
      June 19, 2019 at 5:11 am

      Kernel updates have been released for all distributions, click on the CVE links to get the versions and releases.

      Reply

    • Leave a Reply

    Your email address will not be published.

    5,105 views
    Marcus Meissner
    Back

    IT Modernization


    SAP Solutions


    AI and Analytics


    Hybrid Cloud Solutions


    Nonstop IT


    Exit Federal Government

    Back

    Business-Critical Linux

    Enterprise Container Management

    Edge

    All Products
    Back

    Solutions

    Hybrid Cloud IT
    Business-critical Linux

    Run & secure cloud and on-prem workloads
    Run SAP
    Run SAP

    Deliver mission-critical SAP solutions
    Enterprise Container Management
    Enterprise Container Management

    Orchestrate cloud-native apps
    IT Operations at the Edge
    Edge

    Deploy intelligent devices to the edge
    Public Cloud
    SUSE for Public Cloud

    Accelerate innovation across your clouds
    Security
    Security

    Secure your digital enterprise

    Industries

    Back

    Support

    Product Support
    Premium Support Services

    Dedicated support services from a premium team


    Long Term Service Support

    Stay on your existing product version


    SUSE Liberty Linux

    Mixed Linux Environment Support


    Renew Your Support Subscription

    Services

    Consulting Services
    Training & Certification
    Premium Technical Advisory Services

    Resources

    SUSE Support User Guide
    Patches & Updates
    Product Documentation
    Knowledgebase
    SUSE Customer Center
    Product Support Life Cycle
    Licensing
    Package Hub

    Community packages for SUSE Linux Enterprise Server


    Driver Search
    Support Forums
    Developer Services
    Beta Program
    Security
    Back

    Partners

    Partner Program


    Find a Partner


    Become a Partner


    Login to the SUSE Partner Portal

    Back

    Communities

    Community

    Blog


    Forum


    Academic


    Open Source Projects


    openSUSE.org



    SUSE Israel


    SUSE Polska

    Back

    About

    About Us


    Leadership


    Careers


    Newsroom


    Success Stories


    Investor Relations


    Social Impact


    SUSE Logo and Brand


    Events & Webinars


    Merchandise Store


    Communications Preferences