CVE-2018-6923

Summary

In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip fragment reassembly code is vulnerable to a denial of service due to excessive system resource consumption. This issue can allow a remote attacker who is able to send an arbitrary ip fragments to cause the machine to consume excessive resources.

Affected Software

VendorProductVersion RangeStatus
FreeBSDFreeBSDAll supported versions of FreeBSD.affected

Weaknesses

  • Denial of service

ADP Enrichment

CVE Program Container

Additional References

References