10 matches found
EUVD-2025-208405
In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...
EUVD-2025-208406
In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...
CVE-2025-14769
In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...
CVE-2025-14769 ipfw denial of service
In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...
CVE-2025-14769 ipfw denial of service
In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...
CVE-2025-14769
CVE-2025-14769 maps to FreeBSD ipfw denial of service. The issue is in the tcp-setmss handler, which may free packet data and error out without halting rule processing, allowing a subsequent rule to pass and causing a NULL pointer dereference. Exploitation would yield a DoS on a remote host using...
FreeBSD : FreeBSD -- ipfw denial of service (0b22e22a-dae9-11f0-80b8-bc241121aa0a)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0b22e22a-dae9-11f0-80b8-bc241121aa0a advisory. In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the...
FreeBSD -- ipfw denial of service
Problem Description: In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Impact: Maliciously crafted packe...
FreeBSD-SA-25:11.ipfw
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:11.ipfw Security Advisory The FreeBSD Project Topic: ipfw denial of service Category: core Module: ipfw Announced: 2025-12-16 Affects: FreeBSD 13 and 14...
FreeBSD Security Advisory - FreeBSD-SA-25:11.ipfw
FreeBSD Security Advisory - In some cases, the 'tcp-setmss' handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference...