CVE-2018-5390

CVE-2018-5390: Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service

Vendor Linux
Product Linux Kernel
Weakness CWE-400
Published August 6, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Key dates

02Disclosure timeline

August 6, 2018 CVE published
August 5, 2024 Record updated