3 matches found
CVE-2023-6534
CVE-2023-6534 refers to a FreeBSD pf(4) TCP sequence number validation bug. The flaw allows a remote attacker to inject TCP packets and potentially cause a denial-of-service for hosts behind the firewall. Affected are FreeBSD 12.4-RELEASE before 12.4-RELEASE-p9, 13.2-RELEASE before 13.2-RELEASE-p...
FreeBSD : FreeBSD -- TCP spoofing vulnerability in pf(4) (9cbbc506-93c1-11ee-8e38-002590c1f29c)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9cbbc506-93c1-11ee-8e38-002590c1f29c advisory. - As part of its stateful TCP connection tracking implementation, pf performs sequence number validatio...
FreeBSD-SA-23:17.pf
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:17.pf Security Advisory The FreeBSD Project Topic: TCP spoofing vulnerability in pf4 Category: core Module: pf Announced: 2023-12-05 Credits: Yuxiang Yang, A...