EUVD-2023-31316

Malicious code in bioql PyPI...

Code injection

In OpenBSD 7.2, a TCP packet with destination port 0 that matches a pf divert-to rule can crash the kernel...

CVE-2023-27567

OpenBSD 7.2 is affected. A TCP packet with destination port 0 that matches a pf divert-to rule can crash the kernel, per CVE-2023-27567. The vulnerability stems from how pf divis divert-to matches such packets, leading to a kernel crash (denial of service-like impact). The NVD metrics indicate hi...

CVE-2023-27567

In OpenBSD 7.2, a TCP packet with destination port 0 that matches a pf divert-to rule can crash the kernel...

PT-2023-21210 · Openbsd · Openbsd

Name of the Vulnerable Software and Affected Versions: OpenBSD version 7.2 Description: A TCP packet with destination port 0 that matches a pf divert-to rule can crash the kernel. Recommendations: For OpenBSD version 7.2, as a temporary workaround, consider disabling the pf divert-to rule until a...

Vulnerability fixed in OpenBSD

A vulnerability has been fixed in OpenBSD. A malicious person at remote user could potentially exploit the vulnerability to cause a Denial-of-Service by sending a TCP packet with destination port 0. To do this, however, a "divert-to" rule must be included in the pf configuration included in the p...