CVE-2018-6925

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 11.2-STABLE(r338986) FreeBSD versions prior to 11.2-RELEASE-p4 FreeBSD versions prior to 11.1-RELEASE-p15 FreeBSD versions prior to 10.4-STABLE(r338985) FreeBSD versions prior to 10.4-RELEASE-p13

Description The issue is related to errors in pointer dereferencing, which can lead to a crash of the application when exploited. Specifically, in FreeBSD, improper maintenance of IPv6 protocol control block flags through various failure paths can cause a NULL pointer dereference, leading to a kernel crash. An unprivileged authenticated local user may be able to exploit this issue.

Recommendations For versions prior to 11.2-STABLE(r338986), update to 11.2-STABLE(r338986) or later. For versions prior to 11.2-RELEASE-p4, update to 11.2-RELEASE-p4 or later. For versions prior to 11.1-RELEASE-p15, update to 11.1-RELEASE-p15 or later. For versions prior to 10.4-STABLE(r338985), update to 10.4-STABLE(r338985) or later. For versions prior to 10.4-RELEASE-p13, update to 10.4-RELEASE-p13 or later.