CVE-2019-11477, CVE-2019-11478, CVE-2019-11479

20th Jun, 2019 | Security

Summary

Netflix has identified several TCP networking vulnerabilities in the Linux kernel that is used in RouterOS. The vulnerabilities can trigger denial of service if the RouterOS system is attacked from an insufficiently protected network interface (port). Firewall can protect against the issue.

MikroTik has already applied the necessary patches, and RouterOS versions containing them will be released in a few days time. We will update this article with dates and version numbers, as they become available.

Update: fix included in RouterOS 6.45.1, which is available on our webpage. 

Course of action

Make sure your device is not accessible from untrusted networks, protect it using our suggestions and when upgrade files become available, upgrade to latest RouterOS release. 

More details

The original article

To blog