EUVD-2004-0126

Malware in sbrugna...

EUVD-2020-18262

Malware in sbrugna...

Memory corruption

In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 when a process, such as jexec8 or killall1, calls jailattach2 to enter a jail, the jailed root can attach to it using ptrace2 before the current working directory is changed...

CVE-2020-25582

In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 when a process, such as jexec8 or killall1, calls jailattach2 to enter a jail, the jailed root can attach to it using ptrace2 before the current working directory is changed...

CVE-2020-25582

Removed by vendor...

CVE-2020-25582

CVE-2020-25582 affects FreeBSD: on FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4, and 11.4-RELEASE before p8, a process entering a jail via jail_attach(2) can have the jailed root attach to it with ptrace(2) before the current working directory is changed....

FreeBSD : FreeBSD -- jail_attach(2) relies on the caller to change the cwd (bba850fd-770e-11eb-b87a-901b0ef719ab)

When a process, such as jexec8 or killall1, calls jailattach2 to enter a jail, the jailed root can attach to it using ptrace2 before the current working directory is changed. Impact : A process with superuser privileges running inside a jail could change the root directory outside of the jail,...

FreeBSD-SA-21:05.jail_chdir

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-21:05.jailchdir Security Advisory The FreeBSD Project Topic: jailattach2 relies on the caller to change the cwd Category: core Module: jail Announced: 2021-02-2...

FreeBSD -- jail_attach(2) relies on the caller to change the cwd

Problem Description: When a process, such as jexec8 or killall1, calls jailattach2 to enter a jail, the jailed root can attach to it using ptrace2 before the current working directory is changed. Impact: A process with superuser privileges running inside a jail could change the root directory...

FreeBSD Security Advisory (FreeBSD-SA-04:03.jail.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:03.jail.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

FreeBSD Security Advisory (FreeBSD-SA-04:03.jail.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:03.jail.asc ADV FreeBSD-SA-04:03.jail.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...

CVE-2004-0126

The jailattach system call in FreeBSD 5.1 and 5.2 changes the directory of a calling process even if the process doesn't have permission to change directory, which allows local users to gain read/write privileges to files and directories within another jail...

CVE-2004-0126

CVE-2004-0126 affects FreeBSD jail_attach(2) in FreeBSD 5.1–5.2. A programming error caused the process to change its root directory even if the process lacked permission, allowing a superuser inside a jail to set its root to another jail and gain full read/write access to files and directories w...