Lucene search
+L

66 matches found

OSV
OSV
added 2021/03/26 9:15 p.m.2 views

CVE-2020-7461

In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient8 fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle ...

7.3CVSS8AI score0.04472EPSS
Exploits1References2
Prion
Prion
added 2021/03/26 9:15 p.m.23 views

Heap overflow

In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient8 fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle ...

7.5CVSS7.5AI score0.04472EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/12/03 12:0 a.m.34 views

FreeBSD : FreeBSD -- Multiple vulnerabilities in rtsold (e2748c9d-3483-11eb-b87a-901b0ef719ab)

Two bugs exist in rtsold8's RDNSS and DNSSL option handling. First, rtsold8 failed to perform sufficient bounds checking on the extent of the option. In particular, it does not verify that the option does not extend past the end of the received packet before processing its contents. The kernel...

10CVSS8.7AI score0.01496EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/02/13 12:0 a.m.37 views

FreeBSD : grub2-bhyve -- multiple privilege escalations (9d6a48a7-4dad-11ea-8a1d-7085c25400ea)

Reno Robert reports : FreeBSD uses a two-process model for running a VM. For booting non-FreeBSD guests, a modified grub-emu is used grub-bhyve. Grub-bhyve executes command from guest grub.cfg file. This is a security problem because grub was never written to handle inputs from OS as untrusted. I...

6.1AI score
Exploits0References2
FreeBSD Advisory
FreeBSD Advisory
added 2014/10/21 12:0 a.m.12 views

FreeBSD-SA-14:22.namei

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-14:22.namei Security Advisory The FreeBSD Project Topic: memory leak in sandboxed namei lookup Category: core Module: kernel Announced: 2014-10-21 Credits: Mateus...

5CVSS5.9AI score0.0157EPSS
Exploits0
ThreatPost
ThreatPost
added 2010/08/12 2:7 p.m.4 views

Researchers Release Capsicum, New Sandbox Framework

As applications have become more and more complex in recent years and Web browsers have evolved into operating systems unto themselves, the task of securing desktop environments has become increasingly difficult. And while there’s been quite a bit of innovation on Windows security, advances in Un...

7.7AI score
Exploits0References5
Rows per page
Query Builder