This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[Sophos Advisory]: TCP SACK PANIC kernel vulnerability

Hi everyone,

Three related flaws were found in the Linux kernel’s handling of TCP Selective Acknowledgement (SACK) packets handling with low MSS size. These have been assigned the following CVEs: CVE-2019-11477 is considered an Important severity while CVE-2019-11478 and CVE-2019-11479 are considered a Moderate severity.

The following article outlines the details of the TCP SACK PANIC and how it impacts Sophos products.

Sophos Advisory: TCP SACK PANIC kernel vulnerability

This thread was automatically locked due to age.

Alexander Busch over 5 years ago

Is there an approximate release date for v9.604? Really only very rough, next month or more in 3 months?

-
Cancel
Vote Up 0 Vote Down

Cancel
BAlfson over 5 years ago in reply to Alexander Busch

Alex, the article linked to above says the first week of July.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
HeskaIT over 5 years ago in reply to BAlfson

I see UTM v9.603 is mentioned in the KB Advisory Article for these CVE's, with v9.604 being release mid July to fix it.

Is there a specific SFOS version or versions affected by this for XG appliances?
Cancel
Vote Up 0 Vote Down

Cancel
Shweta over 5 years ago
[Update]: 27/06/2019

TCP SACK PANIC kernel vulnerability fix released plan has been updated. Kindly check this link:

Advisory: TCP SACK PANIC kernel vulnerability
Shweta

Community Support Engineer | Sophos Technical Support
Are you a Sophos Partner? | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel
BAlfson over 5 years ago in reply to HeskaIT

Hi and welcome to the UTM Community!

My understanding is that all version are affected as this vulnerability was only discovered earlier this month. In any case, with an XG question, you will want to post in the XG Firewall Community.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
LuCar Toni over 5 years ago in reply to BAlfson

https://community.sophos.com/products/unified-threat-management/b/utm-blog/posts/utm-up2date-9-604-released

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel