CVE-2026-4247

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)

Description A flaw exists where the tcp respond() function can leak an mbuf when a challenge ACK is not sent. An attacker on the network path, or able to establish a TCP connection, can craft packets to trigger this leak, exceeding the configured rate limit. Off-path attackers may also exploit this by spoofing packets, though this is more difficult. The issue involves leaking an mbuf for each crafted packet sent in excess of the rate limit settings.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.