Unrated severityNVD Advisory· Published Sep 5, 2008· Updated Apr 23, 2026

CVE-2008-3530

Description

sys/netinet6/icmp6.c in the kernel in FreeBSD 6.3 through 7.1, NetBSD 3.0 through 4.0, and possibly other operating systems does not properly check the proposed new MTU in an ICMPv6 Packet Too Big Message, which allows remote attackers to cause a denial of service (panic) via a crafted Packet Too Big Message.

Affected products

FreeBSD/FreeBSD3 versions
cpe:2.3:o:freebsd:freebsd:6.3:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:freebsd:freebsd:6.3:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.freebsd.org/advisories/FreeBSD-SA-08:09.icmp6.ascnvdPatch
www.securityfocus.com/bid/31004nvdPatch
secunia.com/advisories/31745nvdVendor Advisory
www.us-cert.gov/cas/techalerts/TA09-133A.htmlnvdUS Government Resource
ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-015.txt.ascnvd
lists.apple.com/archives/security-announce/2009/May/msg00002.htmlnvd
secunia.com/advisories/32401nvd
secunia.com/advisories/35074nvd
support.apple.com/kb/HT3467nvd
support.apple.com/kb/HT3549nvd
www.securitytracker.com/idnvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2009/0633nvd
www.vupen.com/english/advisories/2009/1297nvd
exchange.xforce.ibmcloud.com/vulnerabilities/44908nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000