CVE-2018-5391

Source
Severity High
Remote Yes
Type Denial of service
Description
A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU saturation and hence a denial of service on the system.
Group Package Affected Fixed Severity Status Ticket
AVG-767 linux-lts 4.14.71-1 High Vulnerable
AVG-762 linux-hardened 4.18.1.a-1 High Vulnerable
AVG-761 linux-zen 4.18.zen1-1 High Vulnerable
AVG-760 linux 4.18.arch1-1 High Vulnerable
References
https://access.redhat.com/articles/3553061
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c30f1fc041b74ecdb072dd44f858750414b8b19f