Openbsd

Openbsd

194 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-19726

Exploit
  • EPSS 10.74%
  • Published 12.12.2019 01:15:10
  • Last modified 21.11.2024 04:35:15

OpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in setuid programs can be defeated by setting a very small RLIMIT_DATA resource limit. When executing chpass or passwd (which are setuid root), _dl_setup_e...

7.4

CVE-2019-14899

  • EPSS 0.05%
  • Published 11.12.2019 15:15:14
  • Last modified 21.11.2024 04:27:38

A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiti...

9.8

CVE-2012-1577

  • EPSS 0.91%
  • Published 10.12.2019 19:15:14
  • Last modified 21.11.2024 01:37:14

lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.

7.8

CVE-2019-19519

Exploit
  • EPSS 0.1%
  • Published 05.12.2019 00:15:11
  • Last modified 21.11.2024 04:34:52

In OpenBSD 6.6, local users can use the su -L option to achieve any login class (often excluding root) because there is a logic error in the main function in su/su.c.

7.8

CVE-2019-19520

Exploit
  • EPSS 2.23%
  • Published 05.12.2019 00:15:11
  • Last modified 21.11.2024 04:34:52

xlock in OpenBSD 6.6 allows local users to gain the privileges of the auth group by providing a LIBGL_DRIVERS_PATH environment variable, because xenocara/lib/mesa/src/loader/loader.c mishandles dlopen.

9.8

CVE-2019-19521

Exploit
  • EPSS 0.54%
  • Published 05.12.2019 00:15:11
  • Last modified 21.11.2024 04:34:52

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/auth_subr.c and gen/authenticate.c in libc (and login/login.c and xenocara/app/xenodm/greeter/verify.c)...

7.8

CVE-2019-19522

Exploit
  • EPSS 0.2%
  • Published 05.12.2019 00:15:11
  • Last modified 21.11.2024 04:34:52

OpenBSD 6.6, in a non-default configuration where S/Key or YubiKey authentication is enabled, allows local users to become root by leveraging membership in the auth group. This occurs because root's file can be written to /etc/skey or /var/db/yubikey...

7.5

CVE-2019-8460

Media report Exploit
  • EPSS 0.69%
  • Published 26.08.2019 20:15:10
  • Last modified 21.11.2024 04:49:56

OpenBSD kernel version <= 6.5 can be forced to create long chains of TCP SACK holes that causes very expensive calls to tcp_sack_option() for every incoming SACK packet which can lead to a denial of service.

5.5

CVE-2018-14775

  • EPSS 0.05%
  • Published 01.08.2018 06:29:00
  • Last modified 21.11.2024 03:49:45

tss_alloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service (system crash) due to incorrect I/O port access control on the i386 architecture.

9.8

CVE-2017-1000372

  • EPSS 0.92%
  • Published 19.06.2017 16:29:00
  • Last modified 20.04.2025 01:37:25

A flaw exists in OpenBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using setuid binaries such as /usr/bin/at. This affects OpenBSD 6.1 and possibly earlier versions.