CVE-2024-10933 OpenBSD readdir directory traversal

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems...

OpenBSD 安全漏洞

OpenBSD is a cross-platform, BSD-based UNIX-like operating system from the Canadian OpenBSD organization. A security vulnerability exists in OpenBSD versions prior to OpenBSD 7.5 errata 009 and OpenBSD versions prior to OpenBSD 7.4 errata 022, which stems from improper validation of the readdir...

PT-2024-16649 · Openbsd · Openbsd

Name of the Vulnerable Software and Affected Versions: OpenBSD versions 7.4 through 7.5 before errata 009 and 022 Description: The issue arises from improper validation of readdir names, allowing unexpected directory traversal on untrusted file systems when a '/' is encountered. This can be...

PT-2024-14626 · Openbsd · Openbsd

Name of the Vulnerable Software and Affected Versions: OpenBSD version 7.4 before errata 009 Description: A race condition exists between pf4's processing of packets and expiration of packet states, which may cause a kernel panic. Recommendations: For OpenBSD version 7.4 before errata 009, apply...