CVE-2019-5599

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions FreeBSD versions 12.0-STABLE before r349197 FreeBSD versions 12.0-RELEASE before 12.0-RELEASE-p6

Description The issue is caused by a bug in the non-default RACK TCP stack, allowing an attacker to cause linked lists to grow unbounded, leading to resource exhaustion and a denial of service. This can be achieved by sending a specially crafted sequence of SACK packets, potentially allowing a remote attacker to cause a denial of service.

Recommendations For FreeBSD versions 12.0-STABLE before r349197, update to a version after r349197 to resolve the issue. For FreeBSD versions 12.0-RELEASE before 12.0-RELEASE-p6, update to 12.0-RELEASE-p6 or later to resolve the issue.

Fix

DoS

Allocation of Resources Without Limits

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770CWE-400

Related Identifiers

BDU:2019-02197

CVE-2019-5599

FREEBSD-SA-19_08

MGASA-2019-0195

MGASA-2019-0196

MGASA-2019-0197

Affected Products

Freebsd

CVE-2019-5599

Weakness Enumeration

Related Identifiers

Affected Products

References · 37