IPsec Packet Validation and Use-After-Free Vulnerability in FreeBSD

IPsec Packet Validation and Use-After-Free Vulnerability in FreeBSD

CVE-2018-6916 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:C

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELEASE-p7, and 10.3-RELEASE-p28, the kernel does not properly validate IPsec packets coming from a trusted host. Additionally, a use-after-free vulnerability exists in the IPsec AH handling code. This issue could cause a system crash or other unpredictable results.

Learn more about our Web Application Penetration Testing UK.