TCP performance issues and stalls when using kernel-3.10.0-957.21.3.el7 or any kernel with TCP SACK PANIC CVE fixes

Solution Verified - Updated -


  • After updating to a kernel which includes the fix for TCP SACK Panic CVE-2019-11478, TCP connections stall or time out.


  • Red Hat Enterprise Linux 8
  • Red Hat Enterprise Linux 7
  • Red Hat Enterprise Linux 6
  • Red Hat Virtualization 4
  • Red Hat Enterprise MRG 2
  • OpenShift Container Platform 4.1
  • CVE-2019-11477, CVE-2019-11478 & CVE-2019-11479

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In