Vulnerability CVE-2019-11477

Vulnerability CVE-2019-11477

Published: 2019-06-18 Modified: 2019-06-19

Description:

	Topic	Author	Date
Med.	Linux / FreeBSD TCP-Based Denial Of Service	Jonathan Looney	19.06.2019

Type:

(Integer Overflow or Wraparound)

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.8/10	6.9/10	10/10

Affected software
Redhat -> Enterprise linux atomic host
Redhat -> Enterprise mrg
Redhat -> Enterprise linux
Redhat -> Enterprise linux aus
Redhat -> Enterprise linux eus
Redhat -> Virtualization
Pulsesecure -> Pulse policy secure
Pulsesecure -> Pulse secure virtual application delivery controller
Pulsesecure -> Pulse connect secure
Linux -> Linux kernel
F5 -> Big-ip access policy manager
F5 -> Big-ip advanced firewall manager
F5 -> Big-ip analytics
F5 -> Big-ip application acceleration manager
F5 -> Big-ip application security manager
F5 -> Big-ip domain name system
F5 -> Big-ip edge gateway
F5 -> Big-ip fraud protection service
F5 -> Big-ip global traffic manager
F5 -> Big-ip link controller
F5 -> Big-ip local traffic manager
F5 -> Big-ip policy enforcement manager
F5 -> Big-ip webaccelerator
F5 -> Traffix sdc
Canonical -> Ubuntu linux

http://packetstormsecurity.com/files/153346/Kernel-Live-Patch-Security-Notice-LSN-0052-1.html

http://www.openwall.com/lists/oss-security/2019/06/20/3

https://access.redhat.com/errata/RHSA-2019:1594

https://access.redhat.com/errata/RHSA-2019:1602

https://access.redhat.com/security/vulnerabilities/tcpsack

https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=3b4929f65b0d8249f19a50245cd88ed1a2f78cff

https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0006

https://security.netapp.com/advisory/ntap-20190625-0001/

https://support.f5.com/csp/article/K78234183

https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic

https://www.kb.cert.org/vuls/id/905115

https://www.synology.com/security/advisory/Synology_SA_19_28