URGENT: Linux CVE out on 5.1.x Kernels SEVERITY: CRITICAL

[scsijon]

Peebee and others,

Anyone using 5.1.x pre 5.1.11 you may want to upgrade ASAP, there is a Critical CVE out on it (CVE-2019-11478+), Multiple Linux and FreeBSD DoS Vulnerabilities, Security Vulnerability: TCP SACK Denial of Service attacks, and a few others.

Anyone that uses netflix, especially, should stop using it until you've upgraded (the tcp part of the problem was initially found by their internal systems apparently).

[ozsouth]

Today Peebee posted a 5.1.11 64 bit kernel & I posted a 4.14.127 64 bit kernel. Both give TCP_SACK mitigation & are Slacko64/ScPup64 compatible.

[mikeslr]

Following up ozsouth's post as peebee's 5.1.11 kernel package was difficult to locate. The link to it is from here, http://murga-linux.com/puppy/viewtopic. ... 29#1029629. Click "Interim delta updates and newer kernels may be available".

The link to ozsouth's kernel package is on http://murga-linux.com/puppy/viewtopic. ... 12#1030512