Freebsd

Freebsd

515 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-7455

  • EPSS 0.1%
  • Veröffentlicht 13.05.2020 16:15:13
  • Zuletzt bearbeitet 21.11.2024 05:37:10

In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amou...

7.8

CVE-2019-15878

  • EPSS 0.05%
  • Veröffentlicht 13.05.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 04:29:39

In FreeBSD 12.1-STABLE before r352509, 11.3-STABLE before r352509, and 11.3-RELEASE before p9, an unprivileged local user can trigger a use-after-free situation due to improper checking in SCTP when an application tries to update an SCTP-AUTH shared ...

7.4

CVE-2019-15879

  • EPSS 0.33%
  • Veröffentlicht 13.05.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 04:29:39

In FreeBSD 12.1-STABLE before r356908, 12.1-RELEASE before p5, 11.3-STABLE before r356908, and 11.3-RELEASE before p9, a race condition in the cryptodev module permitted a data structure in the kernel to be used after it was freed, allowing an unpriv...

9.8

CVE-2019-15880

  • EPSS 0.61%
  • Veröffentlicht 13.05.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 04:29:40

In FreeBSD 12.1-STABLE before r356911, and 12.1-RELEASE before p5, insufficient checking in the cryptodev module allocated the size of a kernel buffer based on a user-supplied length allowing an unprivileged process to trigger a kernel panic.

9.1

CVE-2020-7452

  • EPSS 0.98%
  • Veröffentlicht 29.04.2020 00:15:12
  • Zuletzt bearbeitet 21.11.2024 05:37:10

In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r357489, and 11.3-RELEASE before 11.3-RELEASE-p7, incorrect use of a user-controlled pointer in the epair virtual network module allowed vnet jailed privil...

6

CVE-2020-7453

  • EPSS 0.06%
  • Veröffentlicht 29.04.2020 00:15:12
  • Zuletzt bearbeitet 21.11.2024 05:37:10

In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r359020, and 11.3-RELEASE before 11.3-RELEASE-p7, a missing null termination check in the jail_set configuration option "osrelease" may return more bytes w...

9.8

CVE-2019-15874

  • EPSS 0.61%
  • Veröffentlicht 29.04.2020 00:15:11
  • Zuletzt bearbeitet 21.11.2024 04:29:39

In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in memory access after it has been freed leading to a kernel...

9.8

CVE-2019-5614

  • EPSS 0.61%
  • Veröffentlicht 29.04.2020 00:15:11
  • Zuletzt bearbeitet 21.11.2024 04:45:14

In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in accessing out-of-bounds memory leading to a kernel panic ...

5.5

CVE-2019-15876

  • EPSS 0.12%
  • Veröffentlicht 28.04.2020 20:15:12
  • Zuletzt bearbeitet 21.11.2024 04:29:39

In FreeBSD 12.1-STABLE before r356089, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r356090, and 11.3-RELEASE before 11.3-RELEASE-p7, driver specific ioctl command handlers in the oce network driver failed to check whether the caller has s...

5.5

CVE-2019-15877

  • EPSS 0.05%
  • Veröffentlicht 28.04.2020 20:15:12
  • Zuletzt bearbeitet 21.11.2024 04:29:39

In FreeBSD 12.1-STABLE before r356606 and 12.1-RELEASE before 12.1-RELEASE-p3, driver specific ioctl command handlers in the ixl network driver failed to check whether the caller has sufficient privileges allowing unprivileged users to trigger update...