FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- IPv6 Hop-by-Hop options use-after-free bug

Affected packages
11.3 <= FreeBSD-kernel < 11.3_13


VuXML ID 74bbde13-ec17-11ea-88f8-901b0ef719ab
Discovery 2020-09-02
Entry 2020-09-02

Problem Description:

Due to improper mbuf handling in the kernel, a use-after-free bug might be triggered by sending IPv6 Hop-by-Hop options over the loopback interface.


Triggering the use-after-free situation may result in unintended kernel behaviour including a kernel panic.


CVE Name CVE-2020-7462
FreeBSD Advisory SA-20:24.ipv6