Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory.
2015-02-27T15:59:00.053
2025-04-12T10:46:40.837
Deferred
CVSSv2: 7.8 (HIGH)
AV:N/AC:L/Au:N/C:N/I:N/A:C
10.0
6.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | netgate | pfsense | 2.2.1 | Yes |
Operating System | debian | debian_linux | 7.0 | Yes |
Operating System | freebsd | freebsd | 8.4 | Yes |
Operating System | freebsd | freebsd | 9.0 | Yes |
Operating System | freebsd | freebsd | 9.1 | Yes |
Operating System | freebsd | freebsd | 9.2 | Yes |
Operating System | freebsd | freebsd | 9.3 | Yes |
Operating System | freebsd | freebsd | 10.0 | Yes |
Operating System | freebsd | freebsd | 10.1 | Yes |