CVE-2019-11477, CVE-2019-11478, CVE-2019-11479


Netflix has identified several TCP networking vulnerabilities in the Linux kernel that is used in RouterOS. The vulnerabilities can trigger denial of service if the RouterOS system is attacked from an insufficiently protected network interface (port). Firewall can protect against the issue.

MikroTik has already applied the necessary patches: fix included in RouterOS 6.45.1 and 6.44.5 which is available on our webpage.

Course of action

Make sure your device is not accessible from untrusted networks, protect it using our suggestions and when upgrade files become available, upgrade to latest RouterOS release.

More details

The original article.