Thread Info
  • Locked Locked
  • Replies 6 replies
  • Subscribers 8 subscribers
  • Views 3176 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[Sophos Advisory]: TCP SACK PANIC kernel vulnerability

Yashraj S

Hi everyone,

Three related flaws were found in the Linux kernel’s handling of TCP Selective Acknowledgement (SACK) packets handling with low MSS size. These have been assigned the following CVEs: CVE-2019-11477 is considered an Important severity while CVE-2019-11478 and CVE-2019-11479 are considered a Moderate severity.

The following article outlines the details of the TCP SACK PANIC and how it impacts Sophos products.



This thread was automatically locked due to age.
Parents Reply
  • in reply to HeskaIT

    Hi and welcome to the UTM Community!

    My understanding is that all version are affected as this vulnerability was only discovered earlier this month.  In any case, with an XG question, you will want to post in the XG Firewall Community.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
Unfiltered HTML