Vulnerability in Freebsd

CVE-2023-4809

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not…

EPSS: 0.003 (54.3th percentile) — read the EPSS interpretation.

Affected products

  • Freebsd — versions 13.2-RELEASE, 12.4-RELEASE

Weakness classification (CWE)

References