{"id":"CVE-2014-7250","details":"The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource consumption) via crafted packets.","modified":"2024-06-04T04:57:28.855991Z","published":"2014-12-12T03:03:47Z","withdrawn":"2024-06-30T15:59:38.164848Z","references":[{"type":"ADVISORY","url":"http://jvn.jp/en/jp/JVN07930208/index.html"},{"type":"ADVISORY","url":"http://jvndb.jvn.jp/jvndb/JVNDB-2014-000134"},{"type":"REPORT","url":"https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=195243"}],"affected":[{"package":{"name":"kfreebsd-10","ecosystem":"Debian:10","purl":"pkg:deb/debian/kfreebsd-10?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["10.3~svn300087+ds1-1","10.3~svn300087-5","10.3~svn300087-6"],"ecosystem_specific":{"urgency":"end-of-life"},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2014-7250.json"}}],"schema_version":"1.7.3"}