FreeBSD Buffer Overflow Vulnerability (CNVD-2026-16037)

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A buffer overflow vulnerability exists in FreeBSD. The vulnerability stems from the routine to verify packet signatures in the RPCSECGSS implementation of kgssapi.ko not properly verifying data boundaries, which can be...

CVE-2026-4747

Each RPCSECGSS data packet is validated by a routine which checks a signature in the packet. This routine copies a portion of the packet into a stack buffer, but fails to ensure that the buffer is sufficiently large, and a malicious client can trigger a stack overflow. Notably, this does not...

CVE-2026-4747

Each RPCSECGSS data packet is validated by a routine which checks a signature in the packet. This routine copies a portion of the packet into a stack buffer, but fails to ensure that the buffer is sufficiently large, and a malicious client can trigger a stack overflow. Notably, this does not...

FreeBSD : FreeBSD -- Remote code execution via RPCSEC_GSS packet validation (733febba-28d2-11f1-b35e-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 733febba-28d2-11f1-b35e-bc241121aa0a advisory. Each RPCSECGSS data packet is validated by a routine which checks a signature in the packet. This routi...

krb5 incomplete fix for CVE-2007-3999

The original patch for CVE-2007-3999 in svcauthgss.c in the RPCSECGSS RPC library in MIT Kerberos 5 krb5 1.4 through 1.6.2, as used by the Kerberos administration daemon kadmind and other applications that use krb5, does not correctly check the buffer length in some environments and architectures...