Published On: Aug 15, 2018 05:25
Advisory No: TZCERT/SA/2018/08/13
Source: Multi-State Information Sharing and Analysis Center (MS-ISAC) and Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC).
Software Affected:
A vulnerability has been identified in the Linux Kernel that could allow Denial of Service (DoS) conditions over any open TCP port.
Advisory No: TZCERT/SA/2018/08/13 Date of First Release: 14th August 2018 Source: Multi-State Information Sharing and Analysis Center (MS-ISAC) and Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC). Product Affected: The vulnerable Linux Kernel version is 4.9+. However, several Linux distributions have backported some of the networking code from version 4.9 into their kernels resulting in additional affected systems. The additional affected operating systems are listed below:-
Successful exploitation of this vulnerability could lead to prolonged periods of down time and loss of functionality.
Users and administrators are urged to apply appropriate testing and immediately apply appropriate updates provided by your Linux Distribution Vendor to vulnerable systems. Furthermore, systems administrators are recommended to limit external network access to affected products, if not required; and also use intrusion detection systems to monitor their critical systems running on Linux Operating Systems (OS) for any signs of anomalous activity and take appropriate measures.
A digest of Tanzania Computer Emergency Response Team coverage of cyber-security news across the globe.