TCP performance issues and stalls when using kernel-3.10.0-957.21.3.el7 or any kernel with TCP SACK PANIC CVE fixes
Issue
- After updating to a kernel which includes the fix for TCP SACK Panic CVE-2019-11478, TCP connections stall or time out.
Environment
- Red Hat Enterprise Linux 8
- Red Hat Enterprise Linux 7
- Red Hat Enterprise Linux 6
- Red Hat Virtualization 4
- Red Hat Enterprise MRG 2
- OpenShift Container Platform 4.1
- CVE-2019-11477, CVE-2019-11478 & CVE-2019-11479
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.