Back to search
CVE-2018-6918
Published: Apr 4, 2018
Modified: Sep 17, 2024
PUBLISHED
Description
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, the length field of the ipsec option header does not count the size of the option header itself, causing an infinite loop when the length is zero. This issue can allow a remote attacker who is able to send an arbitrary packet to cause the machine to crash.
| Vendor | Product | Versions |
|---|---|---|
FreeBSD | FreeBSD | affected All supported versions of FreeBSD. |
References
1040628
vdb-entry
x_refsource_SECTRACK
FreeBSD-SA-18:05
vendor-advisory
x_refsource_FREEBSD
103666
vdb-entry
x_refsource_BID
https://support.apple.com/kb/HT210090
x_refsource_CONFIRM
20190531 APPLE-SA-2019-5-30-1 AirPort Base Station Firmware Update 7.9.1
mailing-list
x_refsource_BUGTRAQ
20190611 APPLE-SA-2019-5-30-1 AirPort Base Station Firmware Update 7.9.1
mailing-list
x_refsource_FULLDISC
https://support.apple.com/kb/HT210091
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now