Netbsd Foundation · Netbsd · CVE-2008-3530
**Name of the Vulnerable Software and Affected Versions**
FreeBSD versions 6.3 through 7.1
NetBSD versions 3.0 through 4.0
**Description**
The issue is related to the improper checking of the proposed new MTU in an ICMPv6 Packet Too Big Message. This allows remote attackers to cause a denial of service, resulting in a system panic, via a crafted Packet Too Big Message.
**Recommendations**
For FreeBSD versions 6.3 through 7.1, update to a version that properly checks the proposed new MTU in an ICMPv6 Packet Too Big Message.
For NetBSD versions 3.0 through 4.0, update to a version that properly checks the proposed new MTU in an ICMPv6 Packet Too Big Message.