6 matches found
Debian DSA-2743-1 : kfreebsd-9 - privilege escalation/information leak
Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a privilege escalation or information leak. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-3077 Clement Lecigne from the Google Security Team reported an integer...
[SECURITY] [DSA 2743-1] kfreebsd-9 security update
---------------------------------------------------------------------- Debian Security Advisory DSA-2743-1 [email protected] http://www.debian.org/security/ Aurelien Jarno August 27, 2013 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
Debian Security Advisory DSA 2743-1 (kfreebsd-9 - privilege escalation/information leak)
Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a privilege escalation or information leak. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-3077 Clement Lecigne from the Google Security Team reported an integer...
FreeBSD 'nfsserver' Module 访问绕过漏洞(CVE-2013-4851)
Bugtraq ID:61484 CVE ID:CVE-2013-4851 FreeBSD是一款基于BSD的操作系统 FreeBSD存在安全漏洞,允许恶意用户绕过部分安全限制 问题是由于内核不正确使用客户端提供的验证凭据,可允许远程客户端绕过安全限制,获得对受限资源的未授权访问 0 FreeBSD 9.x 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息: http://security.freebsd.org/advisories/FreeBSD-SA-13:08.nfsserver.asc...
CVE-2013-4851
The vfshangaddrlist function in sys/kern/vfsexport.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allows remote attackers to bypass fil...
CVE-2013-4851
CVE-2013-4851 affects the FreeBSD kernel NFS server: the vfs_hang_addrlist code in sys/kern/vfs_export.c may use client-supplied credentials instead of the exports(5) configured credentials when -network or -host restrictions apply, allowing a remote attacker to bypass file permissions on NFS fil...