CVE-2019-5608Out-of-bounds Read in Freebsd

CWE-125Out-of-bounds ReadCWE-787Out-of-bounds Write10 documents5 sources
Severity
9.8CRITICALNVD
EPSS
0.8%
top 25.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Apple IOSApple Macos Mojave 10.14.4 Security Update 2019-002 High Sierra Security Update 2019-0Apple Tvos+2 more
Timeline
PublishedAug 30
Latest updateJul 27

Description

In FreeBSD 12.0-STABLE before r350648, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350650, 11.3-RELEASE before 11.3-RELEASE-p2, and 11.2-RELEASE before 11.2-RELEASE-p13, the ICMPv6 input path incorrectly handles cases where an MLDv2 listener query packet is internally fragmented across multiple mbufs. A remote attacker may be able to cause an out-of-bounds read or write that may cause the kernel to attempt to access an unmapped page and subsequently panic.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

CVEListV5freebsd/freebsdand before 11.2-RELEASE-p13, before 11.3-RELEASE-p2, before 12.0-RELEASE-p9+2
Appleapple/ios12.2
Appleapple/tvos12.2
Appleapple/watchos5.2

Also affects: Freebsd 11.2, 11.3, 12.0

Patches

Patch: security.freebsd.orgPatch: security.freebsd.org

🔴Vulnerability Details

1
GHSA
GHSA-m5pq-g347-cqr6: In FreeBSD 122022-05-24

📋Vendor Advisories

5
BSD
FreeBSD-SA-19:19.mldv2: ICMPv6 / MLDv2 out-of-bounds memory access2019-08-06
Apple
CVE-2019-5608: watchOS 5.22019-03-27
Apple
CVE-2019-5608: tvOS 12.22019-03-25
Apple
CVE-2019-5608: iOS 12.22019-03-25
Apple
CVE-2019-5608: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra2019-03-25

🕵️Threat Intelligence

3
Trendmicro
Patch Gap Vulnerabilities in the VMware ESXi TCP/IP Stack2022-07-27
Trendmicro
Patch Gap Vulnerabilities in the VMware ESXi TCP/IP Stack2022-07-27
Trendmicro
Patch Gap Vulnerabilities in the VMware ESXi TCP/IP Stack2022-07-27