Mu ipfw paketi fyuluta ziwopsezo ziwiri muzosankha za TCP zotsatsira, zomwe zimayambitsidwa ndi kutsimikizira kolakwika kwa data mumapaketi okonzedwa. Chiwopsezo choyamba (CVE-2019-5614) mukakonza mapaketi a TCP mwanjira inayake atha kubweretsa mwayi wokumbukira kunja kwa buf buffer, ndipo chachiwiri (CVE-2019-15874) chikhoza kutsogolera malo okumbukira omwe adamasulidwa kale. kugwiritsa ntchito pambuyo paulere).
Kuwunikidwa kwa kuyenera kwa zovuta zomwe zazindikirika kuti zigwiritsidwe ntchito zomwe zitha kuyambitsa kuphedwa kwa code yowukira sikunachitike, koma ndizotheka kuti kusatetezeka sikungopangitsa kuti kernel iwonongeke. Mavutowo adakonzedwa muzosintha za FreeBSD 11.3-RELEASE-p8 ndi 12.1-RELEASE-p4 (zokonza zidapangidwa kunthambi zokhazikika mmbuyo mu Disembala chaka chatha, koma mfundo yoti izi zikugwirizana ndi kuthetsa kusatetezeka zidadziwika tsopano) .
Source: opennet.ru