EUVD-2019-15185

Malware in sbrugna...

FreeBSD : FreeBSD -- Insufficient message length validation in bsnmp library (45a95fdd-f680-11e9-a87f-a4badb2f4699)

A function extracting the length from type-length-value encoding is not properly validating the submitted length. Impact : A remote user could cause, for example, an out-of-bounds read, decoding of unrelated data, or trigger a crash of the software such as bsnmpd resulting in a denial of service....

CVE-2019-5610

In FreeBSD 12.0-STABLE before r350637, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350638, 11.3-RELEASE before 11.3-RELEASE-p2, and 11.2-RELEASE before 11.2-RELEASE-p13, the bsnmp library is not properly validating the submitted length from a type-length-value encoding. A remote user...

CVE-2019-5610

The CVE-2019-5610 issue affects FreeBSD’s bsnmp library (affecting 12.0-STABLE before r350637, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350638, 11.3-RELEASE before 11.3-RELEASE-p2, 11.2-RELEASE before 11.2-RELEASE-p13). Root cause: insufficient validation of the length field in a ...

PT-2019-17779 · Freebsd · Freebsd +2

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 12.0-STABLE before r350637 FreeBSD versions 12.0-RELEASE before 12.0-RELEASE-p9 FreeBSD versions 11.3-STABLE before r350638 FreeBSD versions 11.3-RELEASE before 11.3-RELEASE-p2 FreeBSD versions 11.2-RELEASE before...

FreeBSD -- Insufficient message length validation in bsnmp library

Problem Description: A function extracting the length from type-length-value encoding is not properly validating the submitted length. Impact: A remote user could cause, for example, an out-of-bounds read, decoding of unrelated data, or trigger a crash of the software such as bsnmpd resulting in ...