FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0e06013e-6a06-11ea-92ab-00163e433440FreeBSD -- TCP IPv6 SYN cache kernel information disclosure

Problem Description:

When a TCP server transmits or retransmits a TCP SYN-ACK segment over IPv6, the Traffic Class field is not initialized. This also applies to challenge ACK segments, which are sent in response to received RST segments during the TCP connection setup phase.

Impact:

For each TCP SYN-ACK (or challenge TCP-ACK) segment sent over IPv6, one byte of kernel memory is transmitted over the network.


Discovery 2020-03-19
Entry 2020-03-19
FreeBSD-kernel
ge 12.1 lt 12.1_3

ge 11.3 lt 11.3_7

CVE-2020-7451
SA-20:04.tcp