CVE-2019-3874
25.03.2019, 19:29
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 3.10.1 ≤ 𝑥 ≤ 3.10.108 |
| linux | linux_kernel | 4.18.1 ≤ 𝑥 ≤ 4.18.20 |
| debian | debian_linux | 8.0 |
| redhat | enterprise_linux | 7.0 |
| canonical | ubuntu_linux | 14.04 |
| canonical | ubuntu_linux | 16.04 |
| canonical | ubuntu_linux | 18.04 |
| canonical | ubuntu_linux | 18.10 |
| canonical | ubuntu_linux | 19.04 |
| netapp | active_iq_unified_manager_for_vmware_vsphere | 9.5 ≤ |
| netapp | hci_management_node | - |
| netapp | snapprotect | - |
| netapp | solidfire | - |
| netapp | cn1610_firmware | - |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||||
| linux-aws |
| ||||||||||
| linux-aws-hwe |
| ||||||||||
| linux-azure |
| ||||||||||
| linux-azure-edge |
| ||||||||||
| linux-euclid |
| ||||||||||
| linux-flo |
| ||||||||||
| linux-gcp |
| ||||||||||
| linux-gcp-edge |
| ||||||||||
| linux-gke |
| ||||||||||
| linux-gke-4.15 |
| ||||||||||
| linux-gke-5.0 |
| ||||||||||
| linux-goldfish |
| ||||||||||
| linux-grouper |
| ||||||||||
| linux-hwe |
| ||||||||||
| linux-hwe-edge |
| ||||||||||
| linux-kvm |
| ||||||||||
| linux-lts-trusty |
| ||||||||||
| linux-lts-utopic |
| ||||||||||
| linux-lts-vivid |
| ||||||||||
| linux-lts-wily |
| ||||||||||
| linux-lts-xenial |
| ||||||||||
| linux-maguro |
| ||||||||||
| linux-mako |
| ||||||||||
| linux-manta |
| ||||||||||
| linux-oem |
| ||||||||||
| linux-oracle |
| ||||||||||
| linux-raspi2 |
| ||||||||||
| linux-snapdragon |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| kernel-azure |
| ||||||||||||
| kernel-azure-base |
| ||||||||||||
| kernel-default |
| ||||||||||||
| kernel-default-base |
| ||||||||||||
| kernel-default-man |
| ||||||||||||
| kernel-docs |
| ||||||||||||
| kernel-macros |
| ||||||||||||
| kernel-obs-build |
| ||||||||||||
| kernel-source |
| ||||||||||||
| kernel-source-azure |
| ||||||||||||
| kernel-syms |
| ||||||||||||
| kernel-syms-azure |
| ||||||||||||
| kernel-vanilla-base |
| ||||||||||||
| reiserfs-kmp-default |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||
|---|---|---|---|
| bpftool |
| ||
| kernel |
| ||
| kernel-abi-whitelists |
| ||
| kernel-core |
| ||
| kernel-debug |
| ||
| kernel-debug-core |
| ||
| kernel-debug-devel |
| ||
| kernel-debug-modules |
| ||
| kernel-debug-modules-extra |
| ||
| kernel-devel |
| ||
| kernel-doc |
| ||
| kernel-modules |
| ||
| kernel-modules-extra |
| ||
| kernel-rt |
| ||
| kernel-rt-core |
| ||
| kernel-rt-debug |
| ||
| kernel-rt-debug-core |
| ||
| kernel-rt-debug-devel |
| ||
| kernel-rt-debug-kvm |
| ||
| kernel-rt-debug-modules |
| ||
| kernel-rt-debug-modules-extra |
| ||
| kernel-rt-devel |
| ||
| kernel-rt-kvm |
| ||
| kernel-rt-modules |
| ||
| kernel-rt-modules-extra |
| ||
| kernel-tools |
| ||
| kernel-tools-libs |
| ||
| kernel-tools-libs-devel |
| ||
| kernel-zfcpdump |
| ||
| kernel-zfcpdump-core |
| ||
| kernel-zfcpdump-devel |
| ||
| kernel-zfcpdump-modules |
| ||
| kernel-zfcpdump-modules-extra |
| ||
| perf |
| ||
| python3-perf |
|
References