Sad SACK: If you have a network/internet-facing Linux box, you need to know a 'ping of death' vulnerability was disclosed today - CVE-2019-11479 - - it is possible for maliciously crafted TCP SACK packets to crash your kernel

More to follow...


· · Mastodon Twitter Crossposter · 1 · 0 · 1
"Workaround #2: Disable SACK processing (/proc/sys/net/ipv4/tcp_sack set to 0)."
Sign in to participate in the conversation

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!