FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- ipsec validation and use-after-free

Affected packages
11.1 <= FreeBSD-kernel < 11.1_7
10.4 <= FreeBSD-kernel < 10.4_7
10.3 <= FreeBSD-kernel < 10.3_28

Details

VuXML ID dca7ced0-2796-11e8-95ec-a4badb2f4699
Discovery 2018-03-07
Entry 2018-03-14

Problem Description:

Due to a lack of strict checking, an attacker from a trusted host can send a specially constructed IP packet that may lead to a system crash.

Additionally, a use-after-free vulnerability in the AH handling code could cause unpredictable results.

Impact:

Access to out of bounds or freed mbuf data can lead to a kernel panic or other unpredictable results.

References

CVE Name CVE-2018-6916
FreeBSD Advisory SA-18:01.ipsec

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.