CVE-2019-5608

30.08.2019, 09:15

In FreeBSD 12.0-STABLE before r350648, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350650, 11.3-RELEASE before 11.3-RELEASE-p2, and 11.2-RELEASE before 11.2-RELEASE-p13, the ICMPv6 input path incorrectly handles cases where an MLDv2 listener query packet is internally fragmented across multiple mbufs. A remote attacker may be able to cause an out-of-bounds read or write that may cause the kernel to attempt to access an unmapped page and subsequently panic.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
freebsd	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 88%

Vendor	Product	Version
freebsd	freebsd	11.2
freebsd	freebsd	11.2:p10
freebsd	freebsd	11.2:p11
freebsd	freebsd	11.2:p12
freebsd	freebsd	11.2:p13
freebsd	freebsd	11.2:p2
freebsd	freebsd	11.2:p3
freebsd	freebsd	11.2:p4
freebsd	freebsd	11.2:p5
freebsd	freebsd	11.2:p6
freebsd	freebsd	11.2:p7
freebsd	freebsd	11.2:p8
freebsd	freebsd	11.2:p9
freebsd	freebsd	11.3
freebsd	freebsd	11.3
freebsd	freebsd	11.3:p1
freebsd	freebsd	11.3:p2
freebsd	freebsd	11.3:p3
freebsd	freebsd	12.0
freebsd	freebsd	12.0:p1
freebsd	freebsd	12.0:p3
freebsd	freebsd	12.0:p4
freebsd	freebsd	12.0:p5
freebsd	freebsd	12.0:p8
netapp	clustered_data_ontap	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-125 - Out-of-bounds Read
The software reads data past the end, or before the beginning, of the intended buffer.

References

https://security.FreeBSD.org/advisories/FreeBSD-SA-19:19.mldv2.asc

https://security.netapp.com/advisory/ntap-20190910-0002/

https://security.FreeBSD.org/advisories/FreeBSD-SA-19:19.mldv2.asc

https://security.netapp.com/advisory/ntap-20190910-0002/