vulnerability
FreeBSD: VID-DCA7CED0-2796-11E8-95EC-A4BADB2F4699 (CVE-2018-6916): FreeBSD -- ipsec validation and use-after-free
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:P/I:P/A:C) | Mar 7, 2018 | Mar 15, 2018 | May 7, 2019 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:C)
Published
Mar 7, 2018
Added
Mar 15, 2018
Modified
May 7, 2019
Description
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELEASE-p7, and 10.3-RELEASE-p28, the kernel does not properly validate IPsec packets coming from a trusted host. Additionally, a use-after-free vulnerability exists in the IPsec AH handling code. This issue could cause a system crash or other unpredictable results.
Solutions
freebsd-upgrade-base-10_3-release-p28freebsd-upgrade-base-10_4-release-p7freebsd-upgrade-base-11_1-release-p7
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.