VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 27, 2014· Updated May 6, 2026

CVE-2014-3955

CVE-2014-3955

Description

A remote attacker can crash the routed(8) daemon in FreeBSD 8.4 through 10.1-RC2 by sending an RIP request from a non-directly connected network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A remote attacker can crash the routed(8) daemon in FreeBSD 8.4 through 10.1-RC2 by sending an RIP request from a non-directly connected network.

Vulnerability

The routed(8) daemon in FreeBSD 8.4 through 10.1-RC2 contains a remote denial of service vulnerability. When an attacker sends a crafted RIP request packet from a source IP address that is not on a directly connected network, the daemon triggers a failed assertion and exits [1]. The flaw is present in all supported FreeBSD versions prior to the patches released on 2014-10-21 [1].

Exploitation

An attacker must be able to send UDP packets to a target host running routed(8). No authentication or prior access to the network is required. The attacker simply sends a single RIP request packet with a source IP that belongs to a network the target is not directly connected to [1]. The daemon then checks the request and hits an assertion that fails, causing the process to terminate [1].

Impact

Successful exploitation results in a denial of service: the routed(8) daemon exits abruptly. The RIP routing service becomes unavailable, potentially disrupting routing table updates on the affected host and its network neighbors [1]. The system itself remains operational, but the loss of RIP can cause connectivity issues in environments relying on this protocol.

Mitigation

FreeBSD released patches on 2014-10-21. Updated packages are available for the following branches: stable/10, releng/10.1 (via patches -RC2-p1, -RC1-p1, -BETA3-p1), releng/10.0 (10.0-RELEASE-p10), stable/9, releng/9.3 (9.3-RELEASE-p3), releng/9.2 (9.2-RELEASE-p13), releng/9.1 (9.1-RELEASE-p20), stable/8, and releng/8.4 (8.4-RELEASE-p17) [1]. There is no workaround listed; users should apply the relevant patches or disable routed(8) if it is not needed [1].

References
  1. https://www.freebsd.org/security/advisories/FreeBSD-SA-14:21.routed.asc

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

22
  • FreeBSD/FreeBSD22 versions
    cpe:2.3:o:freebsd:freebsd:10.0:*:*:*:*:*:*:*+ 21 more
    • cpe:2.3:o:freebsd:freebsd:10.0:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:10.0:rc1:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:10.0:rc2:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:10.1:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:10.1:rc1:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:10.1:rc2:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:8.4:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.0:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.0:beta1:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.0:beta2:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.0:beta3:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.1:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.1:p4:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.1:p5:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.2:-:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.2:prerelease:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.2:rc1:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.2:rc2:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.3:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.3:rc1:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:9.3:rc2:*:*:*:*:*:*
    • (no CPE)range: >=8.4 <=10.1-RC2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.