Medium severity6.5NVD Advisory· Published Sep 18, 2018· Updated Jun 17, 2026
CVE-2018-14641
CVE-2018-14641
Description
A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel from 4.19-rc1 to 4.19-rc3 inclusive, which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial-of-service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords3 versionspkg:deb/ubuntu/linux-flo@3.4.0-5.23?arch=source&distro=esm-apps/xenialpkg:deb/ubuntu/linux-goldfish@3.4.0-4.27?arch=source&distro=esm-apps/xenialpkg:deb/ubuntu/linux-mako@3.4.0-7.44?arch=source&distro=esm-apps/xenial
>= 0+ 2 more
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
Patches
Vulnerability mechanics
References
4- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatch
- git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/nvdPatchVendor Advisory
- seclists.org/oss-sec/2018/q3/248nvdExploitMailing ListPatchThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2948nvdThird Party Advisory
News mentions
0No linked articles in our index yet.