In versions of FreeBSD 14.0-RELEASE prior to 14-RELEASE-p2, FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p7 and FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p9, the pf(4) packet filter incorrectly validates TCP sequence numbers. This could allow a malicious actor to execute a denial-of-service attack against hosts behind the firewall.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freebsd freebsd 12.4 |
||
freebsd freebsd 13.2 |
||
freebsd freebsd 14.0 |