Lucene search
FreebsdCVELIST:CVE-2018-6922HistoryAug 08, 2018 - 12:00 a.m.
CVE-2018-6922
2018-08-0800:00:00
CWE-400
freebsd
www.cve.org
1
One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number of segments in the reassembly queue. An attacker who has the ability to send TCP traffic to a victim system can degrade the victim system’s network performance and/or consume excessive CPU by exploiting the inefficiency of TCP reassembly handling, with relatively small bandwidth cost.
CNA Affected
[
{
"product": "FreeBSD",
"vendor": "FreeBSD",
"versions": [
{
"status": "affected",
"version": "All versions prior to 11.2-RELEASE-p1, 11.1-RELEASE-p12, 10.4-RELEASE-p10"
}
]
}
]Related
nessus
nessus
AIX 7.2 TL 3 : freebsd (IJ09625)
2018-11-09 00:00:00
AIX 5.3 TL 12 : freebsd (IJ09618)
2018-11-09 00:00:00
AIX 7.2 TL 2 : freebsd (IJ09624)
2018-11-09 00:00:00
debiancve
debiancve
CVE-2018-6922
2018-08-09 18:29:00
nvd
nvd
CVE-2018-6922
2018-08-09 18:29:00
freebsd
freebsd
FreeBSD -- Resource exhaustion in TCP reassembly
2018-08-06 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in FreeBSD affects AIX (CVE-2018-6922)
2019-11-12 12:53:33
prion
prion
Code injection
2018-08-09 18:29:00
cve
cve
CVE-2018-6922
2018-08-09 18:29:00
aix
aix
freebsd_advisory
freebsd_advisory
FreeBSD-SA-18:08.tcp
2018-08-06 00:00:00
cert
cert
TCP implementations vulnerable to Denial of Service
2018-08-06 00:00:00
cisco
cisco
citrix
citrix
Citrix Security Advisory for TCP/IP Reassembly Resource Exhaustion
2020-11-09 09:09:01
oracle
oracle
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00