FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
4d3d4f64-f680-11e9-a87f-a4badb2f4699FreeBSD -- IPv6 remote Denial-of-Service

Problem Description:

Due do a missing check in the code of m_pulldown(9) data returned may not be contiguous as requested by the caller.

Impact:

Extra checks in the IPv6 code catch the error condition and trigger a kernel panic leading to a remote DoS (denial-of-service) attack with certain Ethernet interfaces. At this point it is unknown if any other than the IPv6 code paths can trigger a similar condition.


Discovery 2019-08-20
Entry 2019-10-24
FreeBSD-kernel
ge 12.0 lt 12.0_10

ge 11.3 lt 11.3_3

ge 11.2 lt 11.2_14

CVE-2019-5611
SA-19:22.mbuf