Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


BDFL - Memuneh
61310 posts

Uber Geek
+1 received by user: 12046

Administrator
Trusted
Geekzone
Lifetime subscriber

Topic # 239837 7-Aug-2018 10:17
Send private message quote this post

I wonder how CVE-2018-5390 Linux kernel versions 4.9+ vulnerability would affect Linux-based consumer-grade routers in the wild... Not sure how many (if any) models are running affected version - but if any then I would be afraid.

 

@michaelmurfy do you know?





Create new topic
3107 posts

Uber Geek
+1 received by user: 1204

Subscriber

  Reply # 2069183 7-Aug-2018 10:22
Send private message quote this post

The above vulnerability is a denial of service. So it at least isn't something that could allow a worm to appear.







BDFL - Memuneh
61310 posts

Uber Geek
+1 received by user: 12046

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 2069201 7-Aug-2018 10:52
Send private message quote this post
Meow
7897 posts

Uber Geek
+1 received by user: 3922

Moderator
Trusted
Lifetime subscriber

  Reply # 2069234 7-Aug-2018 12:13
Send private message quote this post

Very few routers (if any) will be using this and all routers planning to use this in the future will likely be using a patched version of the kernel. It is quite a new kernel.

 

My PC is running 4.9.0-7 and my Edgerouter is running 3.10.107-UBNT. The Alpha firmware I think does have 4.9 in testing but as this is an alpha it should be updated before the final build.

 

I don't think many others really run a later version of the Linux kernel - many appliances run FreeBSD / NetBSD or have older kernel versions.





83 posts

Master Geek
+1 received by user: 8


  Reply # 2069472 7-Aug-2018 18:42
Send private message quote this post

Attack surfuce is pretty small. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port. How often a consumer-grade router has a service running on it and exposed to the Internet? Forwarded traffic won't cause DoS.

Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.