oss-sec mailing list archives

Re: CVE-2026-45257: FreeBSD kTLS-RX in-place AES-GCM decrypt over sendfile(2) EXTPG mbufs to page-cache write / local root


From: Lucas Holt <luke () foolishgames com>
Date: Wed, 10 Jun 2026 18:22:55 -0400

On 6/10/26 15:19, bumsrakete wrote:

## Affected versions

Vulnerable (verified or by inspection):
   - FreeBSD 13.0, 13.1, 13.2, 13.3, 13.4
   - FreeBSD 14.0, 14.1, 14.2
   - FreeBSD 15.0-RELEASE (verified on 15.0-RELEASE-p5/amd64)

This would also impact MidnightBSD 4.0+

Lucas


Current thread: