bluhm

3 exploits Active since Aug 2019
CVE-2019-8460 WRITEUP HIGH WRITEUP
Openbsd < 6.5 - Denial of Service
OpenBSD kernel version <= 6.5 can be forced to create long chains of TCP SACK holes that causes very expensive calls to tcp_sack_option() for every incoming SACK packet which can lead to a denial of service.
CVSS 7.5
CVE-2023-27567 WRITEUP HIGH WRITEUP
Openbsd - Denial of Service
In OpenBSD 7.2, a TCP packet with destination port 0 that matches a pf divert-to rule can crash the kernel.
CVSS 7.5
CVE-2023-52558 WRITEUP HIGH WRITEUP
OpenBSD <7.4-7.3 - Buffer Overflow
In OpenBSD 7.4 before errata 002 and OpenBSD 7.3 before errata 019, a network buffer that had to be split at certain length that could crash the kernel after receiving specially crafted escape sequences.
CVSS 7.5