FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Remote denial of service via null pointer dereference

Affected packages
15.0 <= FreeBSD-kernel < 15.0_5

Details

VuXML ID 11bf64f0-28d2-11f1-b35e-bc241121aa0a
Discovery 2026-03-25
Entry 2026-03-26

Problem Description:

On a system exposing an NVMe/TCP target, a remote client can trigger a kernel panic by sending a CONNECT command for an I/O queue with a bogus or stale CNTLID.

Impact:

An attacker with network access to the NVMe/TCP target can trigger an unauthenticated Denial of Service condition on the affected machine.

References

CVE Name CVE-2026-4652
FreeBSD Advisory SA-26:07.nvmf

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.