HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2019-8460

CVSS 7.5v3.1pub. 2019-08-26upd. 2024-11-21

OpenBSD kernel version <= 6.5 can be forced to create long chains of TCP SACK holes that causes very expensive calls to tcp_sack_option() for every incoming SACK packet which can lead to a denial of service.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Openbsd

    OS
    Openbsd
    ≤ 6.5
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2024-10934CRITICAL9.2PL ✓ten sam produkt

Double free i niezainicjowana zmienna w implementacji NFS systemu OpenBSD

CVE-2024-29937CRITICAL9.8PL ✓ten sam produkt

RCE w implementacji NFS w OpenBSD i FreeBSD — zdalne wykonanie kodu

CVE-2023-35784CRITICAL9.8ten sam produkt

A double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and 7.3 before er...

CVE-2021-46880CRITICAL9.8ten sam produkt

x509/x509_verify.c in LibreSSL before 3.4.2, and OpenBSD before 7.0 errata 006, allows authentication bypass b...

CVE-2020-16088CRITICAL9.8ten sam produkt

iked in OpenIKED, as used in OpenBSD through 6.7, allows authentication bypass because ca.c has the wrong logi...