Linux Kernel TCP Vulnerability

jontro · on Aug 6, 2018

Here is some more info about the vulnerability from the ubuntu log https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2...

exrook · on Aug 6, 2018

Links to relevant kernel commits:

    | Introduced    | Fixed                      |
    |===============|============================|
    | 36a6503f [3]  |  72cd43ba [0]              |
    | 1da177e4 [4]  |  f4a3313d [1], 3d4bf93a [2]|

Looking at the git tags, it looks like commit 36a6503f was introduced in kernel v4.9-rc1, while 1da177e4 is the first commit in the kernel git repo, for kernel 2.6-rc2.

[0] https://git.kernel.org/linus/72cd43ba64fc172a443410ce0164589...

[1] https://git.kernel.org/linus/f4a3313d8e2ca9fd8d8f45e40a2903b...

[2] https://git.kernel.org/linus/3d4bf93ac12003f9b8e1e2de37fe279...

[3] https://git.kernel.org/linus/36a6503feddadbbad415fb3891e80f9...

[4] https://git.kernel.org/linus/1da177e4c3f41524e886b7f1b8a0c1f...

joe_hills · on Aug 6, 2018

RedHat states RHEL6 and RHEL7 also affected. Mitigation patches are currently forthcoming.

https://access.redhat.com/articles/3553061

mohamedmansour · on Aug 7, 2018

More info https://www.kb.cert.org/vuls/id/962459

modells · on Aug 6, 2018

Seems like another good, DiD reason to sanitize external traffic using network gear or a secondary os transparent proxy/router like one of the 3 BSD’s.

toast0 · on Aug 6, 2018

Don't worry, FreeBSD has this issue too: https://marc.info/?l=freebsd-security&m=153358855823267&w=2

brians · on Aug 6, 2018

What do the BSDs use to organize out-of-order segments?

dsl · on Aug 6, 2018

> using network gear

Which run Linux in many cases.

pastage · on Aug 6, 2018

What is DiD?

jlgaddis · on Aug 6, 2018

"Defense in depth" [0]

[0]: https://en.m.wikipedia.org/wiki/Defense_in_depth_(computing)

pastage · on Aug 8, 2018

Thanks, it was a three letter acronym of the worst kind!