CVE-2018-6922
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number of segments in the reassembly queue. An attacker who has the ability to send TCP traffic to a victim system can degrade the victim system's network performance and/or consume excessive CPU by exploiting the inefficiency of TCP reassembly handling, with relatively small bandwidth cost.
Una de las estructuras de datos que contienen segmentos TCP en todas las versiones de FreeBSD anteriores a 11.2-RELEASE-p1, 11.1-RELEASE-p12 y 10.4-RELEASE-p10 emplea un algoritmo ineficiente para volver a ensamblar los datos. Esto provoca que el tiempo de CPU que se gasta en el procesamiento de segmentos crezca linealmente con el número de segmentos en la cola de reensamblado. Un atacante que pueda enviar tráfico TCP en un sistema objetivo puede degradar el rendimiento de la red del sistema víctima y/o consumir demasiada CPU explotando la ineficiencia del manejo del reensamblado TCP, con un coste de ancho de banda relativamente pequeño.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-02-12 CVE Reserved
- 2018-08-07 CVE Published
- 2024-03-27 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-400: Uncontrolled Resource Consumption
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/105058 | Third Party Advisory | |
| http://www.securitytracker.com/id/1041425 | Third Party Advisory | |
| https://security.netapp.com/advisory/ntap-20180815-0002 | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.freebsd.org/security/advisories/FreeBSD-SA-18:08.tcp.asc | 2019-10-09 | |
| https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html | 2019-10-09 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | - |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p1 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p3 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p4 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p5 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p6 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p7 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p8 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 10.4 Search vendor "Freebsd" for product "Freebsd" and version "10.4" | p9 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | - |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p1 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p11 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p2 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p4 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p5 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p6 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p7 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.1 Search vendor "Freebsd" for product "Freebsd" and version "11.1" | p9 |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 11.2 Search vendor "Freebsd" for product "Freebsd" and version "11.2" | - |
Affected
| ||||||