vulnerability
Oracle Solaris 11: CVE-2019-5597: Vulnerability in Kernel
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:N/C:N/I:P/A:P) | May 15, 2019 | May 30, 2019 | Feb 17, 2022 |
Severity
6
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:P)
Published
May 15, 2019
Added
May 30, 2019
Modified
Feb 17, 2022
Description
In FreeBSD 11.3-PRERELEASE and 12.0-STABLE before r347591, 11.2-RELEASE before 11.2-RELEASE-p10, and 12.0-RELEASE before 12.0-RELEASE-p4, a bug in the pf IPv6 fragment reassembly logic incorrectly uses the last extension header offset from the last received packet instead of the first packet allowing maliciously crafted IPv6 packets to cause a crash or potentially bypass the packet filter.
Solutions
oracle-solaris-11-3-upgrade-network-firewall-0-5-11-0-175-3-36-0-18-0oracle-solaris-11-4-upgrade-consolidation-osnet-osnet-incorporation-11-4-11-4-8-0-1-3-0oracle-solaris-11-4-upgrade-entire-11-4-11-4-0-0-1-15-0
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.