FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- pf can overflow the stack parsing crafted SCTP packets

Affected packages
15.0 <= FreeBSD-kernel < 15.0_7
14.4 <= FreeBSD-kernel < 14.4_3
14.3 <= FreeBSD-kernel < 14.3_12
13.5 <= FreeBSD-kernel < 13.5_13

Details

VuXML ID 225ba563-4435-11f1-bb07-bc241121aa0a
Discovery 2026-04-29
Entry 2026-04-30

Problem Description:

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic.

Impact:

Remote attackers can craft packets which cause affected systems to panic. This affects any system where pf is configured to process traffic, independent of the configured ruleset.

References

CVE Name CVE-2026-7164
FreeBSD Advisory SA-26:14.pf

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.