vulnerability

FreeBSD: VID-79dfc135-600a-11e6-a6c3-14dae9d210b8 (CVE-2016-1882): FreeBSD -- TCP MD5 signature denial of service

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	Aug 11, 2016	Dec 10, 2025	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Aug 11, 2016

Added

Dec 10, 2025

Modified

Dec 10, 2025

Description

Problem Description: A programming error in processing a TCP connection with both TCP_MD5SIG and TCP_NOOPT socket options may lead to kernel crash. Impact: A local attacker can crash the kernel, resulting in a denial-of-service. A remote attack is theoretically possible, if server has a listening socket with TCP_NOOPT set, and server is either out of SYN cache entries, or SYN cache is disabled by configuration.

Solutions

freebsd-upgrade-base-10_2-release-p9freebsd-upgrade-base-10_1-release-p26freebsd-upgrade-base-9_3-release-p33

References

CVE-2016-1882
https://attackerkb.com/topics/CVE-2016-1882

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today