Linux.Kernel.TCP.SACK.Panic.DoS
Description
This indicates an attack attempt to exploit a Denial of Service vulnerability in Linux kernel.
The vulnerability is due to an error in Linux kernel when it handles TCP packets with low MSS size. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.
Outbreak Alert
In the year 2022, FortiGuard IPS and FortiGuard AV/Sandbox blocked three trillion and six trillion hits respectively from vulnerabilities, malware and 0-day attacks. Those encompassed several thousand varieties of Remote Code Execution, Cross-Site Scripting, Elevation of Privilege, Denial of Service, Trojans, Exploits. FortiGuard Labs alerted customers with numerous critical threats throughout the year based on factors such as proof-of-concept, attack vectors, impact, ease of attack, dependencies, and more. This annual report covers:>
Affected Products
Linux kernel 4.15 and below
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor:
https://access.redhat.com/security/cve/cve-2019-11477
https://access.redhat.com/security/cve/cve-2019-11478
https://access.redhat.com/security/cve/cve-2019-11479
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |