TCP SACK PANIC - CloudLinux Blog
Tags
kernel_updated2

CloudLinux 6 kernel with the fix for TCP SACK PANIC vulnerability is released

kernel_updated2
CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.66 is now available for download from our production repository. You can find more about TCP SACK PANIC vulnerability in this post . Changelog: CKSIX-220: CVE-2019-11477: SACK Panic CKSIX-221: CVE-2019-11478: SACK Slowness or Excess Resource Usage CKSIX-222: CVE-2019-11479: Excess Resource Consumpti...
Continue reading
Recent Comments
Kate Grechishkina
Hello, After you apply this kernel update and reboot the server, you are all set. There will be no need to apply the Mitigation st... Read More
Thursday, 27 June 2019 11:48
  1389 Hits
  2 Comments
panic

Don’t panic about TCP SACK PANIC—we’re working on it

panic
Recently, TCP networking vulnerabilities have been discovered in FreeBSD and Linux kernels by Netflix. There are three flaws, one of them is rated by severity as Important ( CVE-2019-11477 ), and two as Moderate ( CVE-2019-11478 and CVE-2019-11479 ). What is the problem? The flaws use the Maximum Segment Size (MSS) and TCP Selective Acknowledgement...
Continue reading
Recent Comments
Ivan Zhmud
Hello Ryan. It will be in 2-3 working days. Follow please for our updates https://www.kernelcare.com/blog/... Read More
Thursday, 20 June 2019 16:55
Inessa Atmachian
Hi Paul, we are going to release the kernel with the fix for CloudLinux 7 Hybrid in the next week.
Thursday, 20 June 2019 19:26
  5412 Hits
  5 Comments