CVE-2018-14641

Name of the Vulnerable Software and Affected Versions Linux kernel versions 4.19-rc1 through 4.19-rc3

Description A security flaw was found in the ip frag reasm() function, which can cause a later system crash in ip do fragment(). With certain non-default configuration of a victim host, an attacker can trigger this crash remotely, leading to a remote denial-of-service.

Recommendations For Linux kernel versions 4.19-rc1 through 4.19-rc3, consider disabling the ip frag reasm() function as a temporary workaround until a patch is available. Restrict access to the affected ip do fragment() function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.