Wind River Support Network

HomeSafety and Security NoticesWind River Security Vulnerability Notice: TCP SACK PANIC (CVE-2019-11477 CVE-2019-11478 CVE-2019-11479)
Recommended

Wind River Security Vulnerability Notice: TCP SACK PANIC (CVE-2019-11477 CVE-2019-11478 CVE-2019-11479)

Released: --

Summary

Wind River Security Vulnerability Notice: TCP SACK PANIC (CVE-2019-11477 CVE-2019-11478 CVE-2019-11479) for Wind River Linux

Affected Product Versions

Wind River Linux 5, Wind River Linux 6, Wind River Linux 7, Wind River Linux 8, Wind River Linux LTS 18, Wind River Linux LTS 17, Wind River Linux 9, Wind River Linux 4

Downloads

Description

Three related flaws were found in the Linux kernel’s handling of TCP networking. The most severe vulnerability could allow a remote attacker to trigger a kernel panic in systems running the affected software and, as a result, impact the system’s availability.

The issues have been assigned multiple CVEs: CVE-2019-11477 is considered an Important severity, whereas CVE-2019-11478 and CVE-2019-11479 are considered a Moderate severity.

The first two are related to the Selective Acknowledgement (SACK) packets combined with Maximum Segment Size (MSS), the third solely with the Maximum Segment Size (MSS).


Affected Windriver Linux releases:

All releases including Wind River Linux LTS 18, Wind River Linux LTS 17, Wind River Linux 9, Wind River Linux 8, Wind River Linux 7, Wind River Linux 6, Wind River Linux 5, Wind River Linux 4


Affected software components:

Linux kernel.


Affected hardware:

All.


Mitigation


Install source patches of Linux kernel once available;

Additional References


https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479


We are porting all necessary kernel patches on all our supporting releases. We will continue to update this web page and once we have any progress you can get it here.

For any questions or requirements, please contact your local WR support team, or mail to security-alert@windriver.com directly.


Changelog

  • 8/9/2019: Update the patch set (add a new patch) for LTS1018-RCPL0007, LTS1017-RCPL0016 and WRL9-RCPL0021.
  • 8/9/2019: Update the patch set (add a new patch) for WRL7-RCPL0030.
  • 8/9/2019: Update the patch set (add a new patch) for WRL8-RCPL0030.
  • 6/28/2019: Add Experimental HOTPATH of linux kernel for WRL7-RCPL0030.
  • 6/24/2019: Add Experimental HOTPATH of linux kernel for LTS1018-RCPL0007, LTS1017-RCPL0016, WRL9-RCPL0021 and WRL8-RCPL0030.
  • 6/21/2019: Initial

Installation Notes

LTS1018
1) Download the hotpatch locally and unpackage it:

#sha256sum Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-LTS1018-RCPL0007.tar.bz2

27ef555d214fabc08247a6cba7fc651dac04818984135c28d4c091ea568fd6be

# cd /PATH_2_hotpatches/

# tar jxvf Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-LTS1018-RCPL0007.tar.bz2

2) Integrate them and rebuild the kernel image

# bitbake linux-yocto -c devshell

# git am /PATH_2_hotpatches/*patch

# make bzImage

...

LTS1017
1) Download the hotpatch locally and unpackage it:

#sha256sum Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-LTS1017-RCPL0016.tar.bz2

742181e1b7bf8bc5e3a8448d394e64618f9ae9447ba97f0ee5a987249470a8a5

# cd /PATH_2_hotpatches/

# tar jxvf Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-LTS1017-RCPL0016.tar.bz2

2) Integrate them and rebuild the kernel image

# bitbake linux-yocto -c devshell

# git am /PATH_2_hotpatches/*patch

# make bzImage

...

WRL9
1) Download the hotpatch locally and unpackage it:

#sha256sum Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-WRL9-RCPL0021.tar.bz2

dd11fd095422312f5c74f8773348c902701b68840707f349205139a65ab09ce7

# cd /PATH_2_hotpatches/

# tar jxvf Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-WRL9-RCPL0021.tar.bz2

2) Integrate them and rebuild the kernel image

# bitbake linux-windriver -c devshell

# git am /PATH_2_hotpatches/*patch

# make bzImage

...

WRL8
1) Download the hotpatch locally and unpackage it:

#sha256sum Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-WRL8-RCPL0030.tar.bz2

bd090f35efadf5e24073234ea3479f3260724919cb0aeff3b717a4e56e15ee96

# cd /PATH_2_hotpatches/

# tar jxvf Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-WRL8-RCPL0030.tar.bz2

2) Integrate them and rebuild the kernel image

# bitbake linux-windriver -c devshell

# git am /PATH_2_hotpatches/*patch

# make bzImage

...


WRL7
1) Download the hotpatch locally and unpackage it:

#sha256sum Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-WRL7-RCPL0030.tar.bz2

145cf303d516e1497083baff0277994807379c22ce43c52715d12e13ae8822b3

# cd /PATH_2_hotpatches/

# tar jxvf Experimental-Hotpatch-of-SACK-PANIC-for-WRLinux-WRL7-RCPL0030.tar.bz2

2) Integrate them and rebuild the kernel image

# bitbake linux-windriver -c devshell

# git am /PATH_2_hotpatches/*patch

# make bzImage

...


Please note the hot patches is just experimental, not official release.
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube