Total vulnerabilities in the database
In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling.
| Software | From | Fixed in |
|---|---|---|
| freebsd / freebsd | 10.3 | 10.3.x |
| freebsd / freebsd | 10.3-p19 | 10.3-p19.x |
| freebsd / freebsd | 11.0-p10 | 11.0-p10.x |
| freebsd / freebsd | - | 11.0.x |