FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
c0c5afef-38db-11e8-8b7f-a4badb2f469b	FreeBSD -- ipsec crash or denial of service Problem Description: The length field of the option header does not count the size of the option header itself. This causes a problem when the length is zero, the count is then incremented by zero, which causes an infinite loop. In addition there are pointer/offset mistakes in the handling of IPv4 options. Impact: A remote attacker who is able to send an arbitrary packet, could cause the remote target machine to crash. Discovery 2018-04-04 Entry 2018-04-05 FreeBSD-kernel ge 11.1 lt 11.1_9 ge 10.4 lt 10.4_8 ge 10.3 lt 10.3_29 CVE-2018-6918 SA-18:05.ipsec

VuXML ID

Description

c0c5afef-38db-11e8-8b7f-a4badb2f469b

FreeBSD -- ipsec crash or denial of service

Problem Description:

The length field of the option header does not count the size of the option header itself. This causes a problem when the length is zero, the count is then incremented by zero, which causes an infinite loop.

In addition there are pointer/offset mistakes in the handling of IPv4 options.

Impact:

A remote attacker who is able to send an arbitrary packet, could cause the remote target machine to crash.

Discovery 2018-04-04
Entry 2018-04-05
FreeBSD-kernel

ge 11.1 lt 11.1_9

ge 10.4 lt 10.4_8

ge 10.3 lt 10.3_29

CVE-2018-6918
SA-18:05.ipsec