Описание
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-3874
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://usn.ubuntu.com/3982-2
- https://usn.ubuntu.com/3982-1
- https://usn.ubuntu.com/3981-2
- https://usn.ubuntu.com/3981-1
- https://usn.ubuntu.com/3980-2
- https://usn.ubuntu.com/3980-1
- https://usn.ubuntu.com/3979-1
- https://security.netapp.com/advisory/ntap-20190411-0003
- https://lore.kernel.org/netdev/20190401113110.GA20717@hmswarspite.think-freely.org/T/#u
- https://lists.debian.org/debian-lts-announce/2020/09/msg00025.html
- https://discuss.kubernetes.io/t/kubernetes-security-announcement-linux-kernel-memory-cgroups-escape-via-sctp-cve-2019-3874/5594
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3874
- https://bugzilla.redhat.com/show_bug.cgi?id=1686373
- https://access.redhat.com/security/cve/CVE-2019-3874
- https://access.redhat.com/errata/RHSA-2019:3517
- https://access.redhat.com/errata/RHSA-2019:3309
Связанные уязвимости
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.
The SCTP socket buffer used by a userspace application is not accounte ...
Уязвимость буфера сокета SCTP ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании