CVE-2015-1417

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 10.2-PRERELEASE FreeBSD versions prior to 10.1-RELEASE-p16 FreeBSD versions prior to 9.3-STABLE FreeBSD versions prior to 9.3-RELEASE-p21 FreeBSD versions prior to 8.4-STABLE FreeBSD versions prior to 8.4-RELEASE-p35

Description The issue allows remote attackers to cause a denial of service by consuming mbuf via multiple concurrent TCP connections on systems with VNET enabled and at least 16 VNET instances.

Recommendations For versions prior to 10.2-PRERELEASE, update to 10.2-PRERELEASE or later. For versions prior to 10.1-RELEASE-p16, update to 10.1-RELEASE-p16 or later. For versions prior to 9.3-STABLE, update to 9.3-STABLE or later. For versions prior to 9.3-RELEASE-p21, update to 9.3-RELEASE-p21 or later. For versions prior to 8.4-STABLE, update to 8.4-STABLE or later. For versions prior to 8.4-RELEASE-p35, update to 8.4-RELEASE-p35 or later.