CVE-2011-2393

Name	CVE-2011-2393
Description	The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possibly other BSD-based operating systems allows remote attackers to cause a denial of service (CPU consumption and device hang) by sending many Router Advertisement (RA) messages with different source addresses, a similar vulnerability to CVE-2010-4670.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs	684072

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
kfreebsd-10 (PTS)	buster	10.3~svn300087-5	vulnerable

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Debian Bugs
kfreebsd-10	source	(unstable)	(unfixed)	unimportant
kfreebsd-7	source	(unstable)	(unfixed)	low
kfreebsd-8	source	(unstable)	(unfixed)	low
kfreebsd-9	source	(unstable)	(unfixed)	low	684072

Notes

[squeeze] - kfreebsd-8 <no-dsa> (Minor issue)
[wheezy] - kfreebsd-8 <no-dsa> (Minor issue)
[squeeze] - kfreebsd-9 <no-dsa> (Minor issue)
[wheezy] - kfreebsd-9 <no-dsa> (Minor issue)
[jessie] - kfreebsd-10 <no-dsa> (Minor issue)
http://www.mh-sec.de/downloads/mh-RA_flooding_CVE-2010-multiple.txt
Starting with stretch kfreebsd is no longer supported