oss-sec mailing list archives
Re: CVE-2026-45257: FreeBSD kTLS-RX in-place AES-GCM decrypt over sendfile(2) EXTPG mbufs to page-cache write / local root
From: Lucas Holt <luke () foolishgames com>
Date: Wed, 10 Jun 2026 18:22:55 -0400
On 6/10/26 15:19, bumsrakete wrote:
## Affected versions Vulnerable (verified or by inspection): - FreeBSD 13.0, 13.1, 13.2, 13.3, 13.4 - FreeBSD 14.0, 14.1, 14.2 - FreeBSD 15.0-RELEASE (verified on 15.0-RELEASE-p5/amd64)
This would also impact MidnightBSD 4.0+ Lucas
Current thread:
- CVE-2026-45257: FreeBSD kTLS-RX in-place AES-GCM decrypt over sendfile(2) EXTPG mbufs to page-cache write / local root bumsrakete (Jun 10)
- Re: CVE-2026-45257: FreeBSD kTLS-RX in-place AES-GCM decrypt over sendfile(2) EXTPG mbufs to page-cache write / local root Lucas Holt (Jun 10)
