Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.28 views

FreeBSD : FreeBSD -- Kernel memory disclosure in control messages and SCTP (7240de58-6007-11e6-a6c3-14dae9d210b8)

Buffer between control message header and data may not be completely initialized before being copied to userland. CVE-2014-3952 Three SCTP cmsgs, SCTPSNDRCV, SCTPEXTRCV and SCTPRCVINFO, have implicit padding that may not be completely initialized before being copied to userland. In addition, thre...

4.9CVSS5.9AI score0.0035EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/11/10 12:0 a.m.32 views

Debian DSA-3070-1 : kfreebsd-9 - security update

Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or information disclosure. - CVE-2014-3711 Denial of service through memory leak in sandboxed namei lookups. - CVE-2014-3952 Kernel memory disclosure in sockbuf control messages. - CVE-2014-395...

5CVSS5.4AI score0.0157EPSS
Exploits0References10
CVE
CVE
added 2014/07/15 2:0 p.m.49 views

CVE-2014-3953

CVE-2014-3953 affects FreeBSD kernels where SCTP-related control messages (SCTP_SNDRCV, SCTP_EXTRCV, SCTP_RCVINFO) and a set of notifications (SCTP_PEER_ADDR_CHANGE, SCTP_REMOTE_ERROR, SCTP_AUTHENTICATION_EVENT) may leak kernel memory due to improper initialization of data structures. Exploitatio...

4.9CVSS5.5AI score0.0035EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2014/07/15 2:0 p.m.24 views

CVE-2014-3953

FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via a 1 SCTPSNDRCV, 2 SCTPEXTRCV, or 3 SCTPRCVINFO SCTP cmsg or a 4 SCTPPEERADDRCHANGE, 5...

5.4AI score0.0035EPSS
Exploits0References4
FreeBSD Advisory
FreeBSD Advisory
added 2014/07/08 12:0 a.m.15 views

FreeBSD-SA-14:17.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:17.kmem Security Advisory The FreeBSD Project Topic: Kernel memory disclosure in control messages and SCTP notifications Category: core Module: kern, sctp...

4.9CVSS6AI score0.0035EPSS
Exploits0
FreeBSD
FreeBSD
added 2014/07/08 12:0 a.m.22 views

FreeBSD -- Kernel memory disclosure in control messages and SCTP

Problem Description: Buffer between control message header and data may not be completely initialized before being copied to userland. CVE-2014-3952 Three SCTP cmsgs, SCTPSNDRCV, SCTPEXTRCV and SCTPRCVINFO, have implicit padding that may not be completely initialized before being copied to...

4.9CVSS6.1AI score0.0035EPSS
Exploits0
Rows per page
Query Builder