Remote Denial-of-Service Vulnerability in Linux Kernel 4.19-rc1 to 4.19-rc3

Remote Denial-of-Service Vulnerability in Linux Kernel 4.19-rc1 to 4.19-rc3

CVE-2018-14641 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel from 4.19-rc1 to 4.19-rc3 inclusive, which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial-of-service.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.