CVE-2026-7164

pf can overflow the stack parsing crafted SCTP packets

Title source: cna

Description

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affected systems to panic. This affects any system where pf is configured to process traffic, independent of the configured ruleset.

References (1)

[Vendor Advisory] https://security.freebsd.org/advisories/FreeBSD-SA-26:14.pf.asc

Scores

EPSS 0.0013

EPSS Percentile 31.2%

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-674 CWE-791

Status published

Products (4)

FreeBSD/FreeBSD 13.5-RELEASE - p13

FreeBSD/FreeBSD 14.3-RELEASE - p12

FreeBSD/FreeBSD 14.4-RELEASE - p3

FreeBSD/FreeBSD 15.0-RELEASE - p7

Published Apr 30, 2026

Tracked Since Apr 30, 2026