CVE-2023-6534
N/A
N/A
Summary
In versions of FreeBSD 14.0-RELEASE before 14-RELEASE-p2, FreeBSD 13.2-RELEASE before 13.2-RELEASE-p7 and FreeBSD 12.4-RELEASE before 12.4-RELEASE-p9, the pf(4) packet filter incorrectly validates TCP sequence numbers. This could allow a malicious actor to execute a denial-of-service attack against hosts behind the firewall.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| FreeBSD | FreeBSD | 14.0-RELEASE < p2 | affected |
| FreeBSD | FreeBSD | 13.2-RELEASE < p7 | affected |
| FreeBSD | FreeBSD | 12.4-RELEASE < p9 | affected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://security.freebsd.org/advisories/FreeBSD-SA-23:17.pf.asc
- https://security.netapp.com/advisory/ntap-20240112-0007/
References
- https://security.freebsd.org/advisories/FreeBSD-SA-23:17.pf.asc
- https://security.netapp.com/advisory/ntap-20240112-0007/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.