CVE-2018-6922

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 11.2-RELEASE-p1 FreeBSD versions prior to 11.1-RELEASE-p12 FreeBSD versions prior to 10.4-RELEASE-p10

Description The issue is related to an inefficient algorithm used for TCP reassembly in the affected operating systems. This inefficiency can be exploited by a remote attacker who sends specially crafted TCP traffic, potentially leading to a denial of service by consuming excessive CPU resources and degrading network performance. The exploitation can be achieved with relatively small bandwidth cost.

Recommendations For versions prior to 11.2-RELEASE-p1, update to 11.2-RELEASE-p1 or later. For versions prior to 11.1-RELEASE-p12, update to 11.1-RELEASE-p12 or later. For versions prior to 10.4-RELEASE-p10, update to 10.4-RELEASE-p10 or later.