Lucene search
+L
FreebsdMost viewed

6588 matches found

freebsd
freebsd
•added 2021/11/15 12:0 a.m.•52 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 25 security fixes, including: 1263620 High CVE-2021-38008: Use after free in media. Reported by Marcin Towalski of Cisco Talos on 2021-10-26 1260649 High CVE-2021-38009: Inappropriate implementation in cache. Reported by Luan Herrera @lbherrera on...

9.6CVSS8.3AI score0.01362EPSS
Exploits2References1
freebsd
freebsd
•added 2021/05/27 12:0 a.m.•52 views

FreeBSD-kernel -- SMAP bypass

Problem Description: The FreeBSD kernel enables SMAP during boot when the CPU reports that the SMAP capability is present. Subroutines such as copyin and copyout are responsible for disabling SMAP around the sections of code that perform user memory accesses. Such subroutines must handle page...

7.5CVSS7.4AI score0.01249EPSS
Exploits1
freebsd
freebsd
•added 2021/04/08 12:0 a.m.•52 views

tomcat -- JNDI Realm Authentication Weakness in multiple versions

ilja.farber reports: Queries made by the JNDI Realm did not always correctly escape parameters. Parameter values could be sourced from user provided data eg user names as well as configuration data provided by an administrator. In limited circumstances it was possible for users to authenticate...

6.5CVSS3.3AI score0.09886EPSS
Exploits0References1
freebsd
freebsd
•added 2020/09/08 12:0 a.m.•52 views

Node.js -- September 2020 Security Releases

Node.js reports: Updates are now available for v10,x, v12.x and v14.x Node.js release lines for the following issues. HTTP Request Smuggling due to CR-to-Hyphen conversion High CVE-2020-8201 Affected Node.js versions converted carriage returns in HTTP request headers to a hyphen before parsing...

7.8CVSS1.5AI score0.08794EPSS
Exploits0References1
freebsd
freebsd
•added 2020/01/30 12:0 a.m.•52 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Path Traversal to Arbitrary File Read User Permissions Not Validated in ProjectExportWorker XSS Vulnerability in File API Package and File Disclosure through GitLab Workhorse XSS Vulnerability in Create Groups Issue and Merge Request Activity Counts Exposed Email Confirmation Bypa...

9.8CVSS2.1AI score0.02462EPSS
Exploits1References1
freebsd
freebsd
•added 2019/06/20 12:0 a.m.•52 views

Mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2019-11708: sandbox escape using Prompt:Open Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When...

10CVSS2.6AI score0.55874EPSS
Exploits10References1
freebsd
freebsd
•added 2018/06/30 12:0 a.m.•52 views

Several Security Defects in the Bouncy Castle Crypto APIs

The Legion of the Bouncy Castle reports: Release 1.60 is now available for download. CVE-2018-1000180: issue around primality tests for RSA key pair generation if done using only the low-level API. CVE-2018-1000613: lack of class checking in deserialization of XMSS/XMSS^MT private keys with BDS...

9.8CVSS4.1AI score0.04767EPSS
Exploits0References1
freebsd
freebsd
•added 2018/06/26 12:0 a.m.•52 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2018-12359: Buffer overflow using computed size of canvas element CVE-2018-12360: Use-after-free when using focus CVE-2018-12361: Integer overflow in SwizzleData CVE-2018-12358: Same-origin bypass using service worker and redirection CVE-2018-12362: Integer overflo...

9.8CVSS1AI score0.04831EPSS
Exploits3References3
freebsd
freebsd
•added 2018/03/27 12:0 a.m.•52 views

OpenSSL -- multiple vulnerabilities

The OpenSSL project reports: Constructed ASN.1 types with a recursive definition could exceed the stack CVE-2018-0739 Constructed ASN.1 types with a recursive definition such as can be found in PKCS7 could eventually exceed the stack given malicious input with excessive recursion. This could resu...

6.5CVSS7.2AI score0.19295EPSS
Exploits0References1
freebsd
freebsd
•added 2016/10/27 12:0 a.m.•52 views

tomcat -- multiple vulnerabilities

The Apache Software Foundation reports: Low: Unrestricted Access to Global Resources CVE-2016-6797 Low: Security Manager Bypass CVE-2016-6796 Low: System Property Disclosure CVE-2016-6794 Low: Security Manager Bypass CVE-2016-5018 Low: Timing Attack CVE-2016-0762...

9.1CVSS7.9AI score0.10303EPSS
Exploits5References3
freebsd
freebsd
•added 2016/09/26 12:0 a.m.•52 views

OpenSSL -- multiple vulnerabilities

OpenSSL reports: Critical vulnerability in OpenSSL 1.1.0a Fix Use After Free for large message sizes CVE-2016-6309 Moderate vulnerability in OpenSSL 1.0.2i Missing CRL sanity check CVE-2016-7052...

10CVSS1.7AI score0.70223EPSS
Exploits1References1
freebsd
freebsd
•added 2016/01/22 12:0 a.m.•52 views

openssl -- multiple vulnerabilities

OpenSSL project reports: Historically OpenSSL only ever generated DH parameters based on "safe" primes. More recently in version 1.0.2 support was provided for generating X9.42 style parameter files such as those required for RFC 5114 support. The primes used in such files may not be "safe". Wher...

5.9CVSS6.6AI score0.83645EPSS
Exploits2References1
freebsd
freebsd
•added 2015/12/21 12:0 a.m.•52 views

qemu -- denial of service vulnerability in MegaRAID SAS HBA emulation

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with the SCSI MegaRAID SAS HBA emulation support is vulnerable to a stack buffer overflow issue. It occurs while processing the SCSI controller's CTRLGETINFO command. A privileged guest user could use this flaw to crash...

6.5CVSS7.8AI score0.00411EPSS
Exploits0References4
freebsd
freebsd
•added 2015/11/10 12:0 a.m.•52 views

MySQL - Multiple vulnerabilities

Oracle reports: Critical Patch Update: MySQL Server, versions 5.5.45 and prior, 5.6.26 and prior...

4CVSS7AI score0.30146EPSS
Exploits6References5
freebsd
freebsd
•added 2014/10/15 12:0 a.m.•52 views

OpenSSL -- multiple vulnerabilities

The OpenSSL Project reports: A flaw in the DTLS SRTP extension parsing code allows an attacker, who sends a carefully crafted handshake message, to cause OpenSSL to fail to free up to 64k of memory causing a memory leak. This could be exploited in a Denial Of Service attack. This issue affects...

7.1CVSS5.3AI score0.99999EPSS
Exploits7References1
freebsd
freebsd
•added 2013/07/11 12:0 a.m.•52 views

apache24 -- several vulnerabilities

Apache HTTP SERVER PROJECT reports: moddav: Sending a MERGE request against a URI handled by moddavsvn with the source href sent as part of the request body as XML pointing to a URI that is not configured for DAV will trigger a segfault. modsessiondbd: Make sure that dirty flag is respected when...

7.2AI score
Exploits0References1
freebsd
freebsd
•added 2012/05/03 12:0 a.m.•52 views

php -- vulnerability in certain CGI-based setups

php development team reports: Security Enhancements and Fixes in PHP 5.3.12: Initial fix for cgi-bin ?-s cmdarg parse issue CVE-2012-1823...

9.8CVSS9.5AI score0.99998EPSS
Exploits42
freebsd
freebsd
•added 2011/07/12 12:0 a.m.•52 views

libsndfile -- PAF file processing integer overflow

Secunia reports: Hossein Lotfi has discovered a vulnerability in libsndfile, which can be exploited by malicious people to potentially compromise an application using the library. The vulnerability is caused due to an integer overflow error in the "paf24init" function src/paf.c when processing...

6.8CVSS7.1AI score0.04647EPSS
Exploits0References1
freebsd
freebsd
•added 2010/10/02 12:0 a.m.•52 views

apr -- multiple vunerabilities

Secunia reports: Multiple vulnerabilities have been reported in APR-util, which can be exploited by malicious people to cause a DoS Denial of Service. Two XML parsing vulnerabilities exist in the bundled version of expat. An error within the "aprbrigadesplitline" function in buckets/aprbrigade.c...

5CVSS8AI score0.27924EPSS
Exploits3References2
freebsd
freebsd
•added 2009/11/23 12:0 a.m.•52 views

opera -- multiple vulnerabilities

Opera Team reports: Fixed a heap buffer overflow in string to number conversion Fixed an issue where error messages could leak onto unrelated sites Fixed a moderately severe issue, as reported by Chris Evans of the Google Security Team; details will be disclosed at a later date...

6.6AI score
Exploits0References2
freebsd
freebsd
•added 2009/10/27 12:0 a.m.•52 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: MFSA 2009-64 Crashes with evidence of memory corruption rv:1.9.1.4/ 1.9.0.15 MFSA 2009-63 Upgrade media libraries to fix memory safety bugs MFSA 2009-62 Download filename spoofing with RTL override MFSA 2009-61 Cross-origin data theft through document.getSelection MFSA...

10CVSS10.4AI score0.15519EPSS
Exploits32References11
freebsd
freebsd
•added 2007/04/27 12:0 a.m.•52 views

tomcat -- multiple vulnerabilities

Apache Project reports: The Apache Tomcat team is proud to announce the immediate availability of Tomcat 4.1.36 stable. This build contains numerous library updates, A small number of bug fixes and two important security fixes...

4.3CVSS6.6AI score0.29784EPSS
Exploits4
freebsd
freebsd
•added 2004/01/13 12:0 a.m.•52 views

Vulnerabilities in H.323 implementations

The NISCC and the OUSPG developed a test suite for the H.323 protocol. This test suite has uncovered vulnerabilities in several H.323 implementations with impacts ranging from denial-of-service to arbitrary code execution. In the FreeBSD Ports Collection, pwlib' is directly affected. Other...

10CVSS7AI score0.10309EPSS
Exploits0References3
freebsd
freebsd
•added 2026/05/27 12:0 a.m.•51 views

Erlang/OTP -- TLS hostname verification bypass via Subject CommonName fallback and name constraints

https://github.com/erlang/otp/security/advisories/GHSA-22cw-4ph4-6447 reports: Erlang/OTP's TLS hostname verification implements a legacy RFC 6125 fallback that checks the Subject CommonName when the Subject Alternative Name SAN extension is absent, rather than following RFC 9525 which requires...

8.1CVSS5.8AI score0.00338EPSS
Exploits0References1
freebsd
freebsd
•added 2024/01/09 12:0 a.m.•51 views

Django -- multiple vulnerabilities

Django reports: CVE-2024-24680:Potential denial-of-service in intcomma template filter...

7.5CVSS7.3AI score0.01606EPSS
Exploits0References1
freebsd
freebsd
•added 2023/03/29 12:0 a.m.•51 views

samba -- multiple vulnerabilities

The Samba Team reports: An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory. The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset...

7.7CVSS6.1AI score0.00719EPSS
Exploits0References3
freebsd
freebsd
•added 2023/03/08 12:0 a.m.•51 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 40 security fixes: 1411210 High CVE-2023-1213: Use after free in Swiftshader. Reported by Jaehun Jeong@n3sk of Theori on 2023-01-30 1412487 High CVE-2023-1214: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2023-02-03 1417176...

8.8CVSS8.3AI score0.01163EPSS
Exploits7References1
freebsd
freebsd
•added 2022/09/02 12:0 a.m.•51 views

chromium -- insufficient data validation in Mojo

Chrome Releases reports: This release contains 1 security fix: 1358134 High CVE-2022-3075: Insufficient data validation in Mojo. Reported by Anonymous on 2022-08-30 Google is aware that an exploit of CVE-2022-3075 exists in the wild...

9.6CVSS1.9AI score0.0568EPSS
Exploits0References1
freebsd
freebsd
•added 2022/08/02 12:0 a.m.•51 views

samba -- buffer overflow in Heimdal unwrap_des3()

The Samba Team reports: The DES for Samba 4.11 and earlier and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a maliciously small packet...

6.5CVSS2.6AI score0.0369EPSS
Exploits0References1
freebsd
freebsd
•added 2022/04/04 12:0 a.m.•51 views

chromium -- Type confusion in V8

Chrome Releases reports: This release includes one security fix: 1311641 High CVE-2022-1232: Type Confusion in V8. Reported by Sergei Glazunov of Google Project Zero on 2022-03-30...

8.8CVSS0.7AI score0.16488EPSS
Exploits2References1
freebsd
freebsd
•added 2022/03/23 12:0 a.m.•51 views

gitea -- Open Redirect on login

Andrew Thornton reports: When a location containing backslashes is presented, the existing protections against open redirect are bypassed, because browsers will convert adjacent forward and backslashes within the location to double forward slashes...

7.2CVSS3.3AI score0.53177EPSS
Exploits1References1
freebsd
freebsd
•added 2022/01/11 12:0 a.m.•51 views

moonlight-embedded -- multiple vulnerabilities

The moonlight-embedded project reports: Moonlight Embedded v2.6.1 fixed CVE-2023-42799, CVE-2023-42800, and CVE-2023-42801...

8.8CVSS7.1AI score0.01657EPSS
Exploits3References3
freebsd
freebsd
•added 2021/05/10 12:0 a.m.•51 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 19 security fixes, including: 1180126 High CVE-2021-30506: Incorrect security UI in Web App Installs. Reported by @retsew0x01 on 2021-02-19 1178202 High CVE-2021-30507: Inappropriate implementation in Offline. Reported by Alison Huffman, Microsoft...

8.8CVSS0.9AI score0.02517EPSS
Exploits14References1
freebsd
freebsd
•added 2021/03/25 12:0 a.m.•51 views

OpenSSL -- Multiple vulnerabilities

The OpenSSL project reports: High: CA certificate check bypass with X509VFLAGX509STRICT CVE-2021-3450The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. High: NULL pointer deref in signaturealgorithms...

7.4CVSS1.6AI score0.62906EPSS
Exploits4References1
freebsd
freebsd
•added 2020/06/17 12:0 a.m.•51 views

Python -- multiple vulnerabilities

Python reports: bpo-29778: Ensure python3.dll is loaded from correct locations when Python is embedded CVE-2020-15523. bpo-41004: CVE-2020-14422: The hash methods of ipaddress.IPv4Interface and ipaddress.IPv6Interface incorrectly generated constant hash values of 32 and 128 respectively. This...

7.8CVSS0.3AI score0.12826EPSS
Exploits0References2
freebsd
freebsd
•added 2020/05/15 12:0 a.m.•51 views

Rails -- remote code execution vulnerability

Ruby on Rails blog: Due to an unfortunate oversight, Rails 4.2.11.2 has a missing constant error. To address this Rails 4.2.11.3 has been released. The original announcement for CVE-2020-8163 has a follow-up message with an updated patch if you’re unable to use the gems...

8.8CVSS3.6AI score0.83085EPSS
Exploits10References2
freebsd
freebsd
•added 2020/05/06 12:0 a.m.•51 views

zeek -- Various vulnerabilities

Jon Siwek of Corelight reports: This release fixes the following security issues: Fix buffer over-read in Ident analyzer Fix SSL scripting error leading to uninitialized field access and memory leak Fix POP3 analyzer global buffer over-read Fix potential stack overflows due to use of...

1.7AI score
Exploits0References1
freebsd
freebsd
•added 2019/08/21 12:0 a.m.•51 views

clamav -- multiple vulnerabilities

Micah Snyder reports: An out of bounds write was possible within ClamAV&s NSIS bzip2 library when attempting decompression in cases where the number of selectors exceeded the max limit set by the library CVE-2019-12900. The issue has been resolved by respecting that limit. The zip bomb...

9.8CVSS6.7AI score0.0812EPSS
Exploits0References1
freebsd
freebsd
•added 2019/05/21 12:0 a.m.•51 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2019-9815: Disable hyperthreading on content JavaScript threads on macOS CVE-2019-9816: Type confusion with object groups and UnboxedObjects CVE-2019-9817: Stealing of cross-domain images using canvas CVE-2019-9818: Use-after-free in crash generation server...

9.8CVSS0.09393EPSS
Exploits6References3
freebsd
freebsd
•added 2019/03/13 12:0 a.m.•51 views

python 3.6 -- multiple vulnerabilities

Python changelog: bpo-35907: CVE-2019-9948: Avoid file reading by disallowing local-file:// and localfile:// URL schemes in URLopener.open and URLopener.retrieve of urllib.request. bpo-36742: Fixes mishandling of pre-normalization characters in urlsplit. bpo-30458: Address CVE-2019-9740 by...

9.1CVSS8.5AI score0.12261EPSS
Exploits2References1
freebsd
freebsd
•added 2019/03/01 12:0 a.m.•51 views

py-twisted -- multiple vulnerabilities

Twisted developers reports: All HTTP clients in twisted.web.client now raise a ValueError when called with a method and/or URL that contain invalid characters. This mitigates CVE-2019-12387. Thanks to Alex Brasetvik for reporting this vulnerability. The HTTP/2 server implementation now enforces T...

9.8CVSS0.2AI score0.87806EPSS
Exploits4References1
freebsd
freebsd
•added 2018/12/11 12:0 a.m.•51 views

urllib3 -- multiple vulnerabilities

NIST reports: by search in the range 2018/01/01 - 2019/11/10: urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be...

7.5CVSS8.6AI score0.02836EPSS
Exploits0References1
freebsd
freebsd
•added 2018/11/27 12:0 a.m.•51 views

node.js -- multiple vulnerabilities

Node.js reports: Updates are now available for all active Node.js release lines. These include fixes for the vulnerabilities identified in the initial announcement. They also include upgrades of Node.js 6 and 8 to OpenSSL 1.0.2q, and upgrades of Node.js 10 and 11 to OpenSSL 1.1.0j. We recommend...

8.1CVSS1.2AI score0.41288EPSS
Exploits4References1
freebsd
freebsd
•added 2017/03/06 12:0 a.m.•51 views

proftpd -- user chroot escape vulnerability

NVD reports: ProFTPD ... controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass the AllowChrootSymlinks...

5.5CVSS1.2AI score0.00419EPSS
Exploits0References1
freebsd
freebsd
•added 2017/02/10 12:0 a.m.•51 views

xen-tools -- oob access in cirrus bitblt copy

The Xen Project reports: When doing bitblt copy backwards, qemu should negate the blit width. This avoids an oob access before the start of video memory. A malicious guest administrator can cause an out of bounds memory access, possibly leading to information disclosure or privilege escalation...

9.1CVSS9AI score0.03648EPSS
Exploits0References1
freebsd
freebsd
•added 2017/02/03 12:0 a.m.•51 views

FreeRADIUS -- TLS resumption authentication bypass

Stefan Winter reports: The TLS session cache in FreeRADIUS before 3.0.14 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers such as malicious 802.1X supplicants to bypass authentication via PEAP or TTLS...

9.8CVSS5.6AI score0.03914EPSS
Exploits0References3
freebsd
freebsd
•added 2016/11/15 12:0 a.m.•51 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: Please reference CVE/URL list for details...

9.8CVSS2AI score0.12416EPSS
Exploits10References2
freebsd
freebsd
•added 2016/05/31 12:0 a.m.•51 views

nginx -- a specially crafted request might result in worker process crash

Maxim Dounin reports: A problem was identified in nginx code responsible for saving client request body to a temporary file. A specially crafted request might result in worker process crash due to a NULL pointer dereference while writing client request body to a temporary file...

7.5CVSS1.6AI score0.16376EPSS
Exploits0References1
freebsd
freebsd
•added 2016/02/16 12:0 a.m.•51 views

glibc -- getaddrinfo stack-based buffer overflow

Fabio Olive Leite reports: A stack-based buffer overflow was found in libresolv when invoked from nssdns, allowing specially crafted DNS responses to seize control of EIP in the DNS client. The buffer overflow occurs in the functions senddg send datagram and sendvc send TCP for the NSS module...

8.1CVSS8.7AI score0.89557EPSS
Exploits17References4
freebsd
freebsd
•added 2015/06/11 12:0 a.m.•51 views

openssl -- multiple vulnerabilities

The OpenSSL team reports: Missing DHE man-in-the-middle protection Logjam CVE-2015-4000 Malformed ECParameters causes infinite loop CVE-2015-1788 Exploitable out-of-bounds read in X509cmptime CVE-2015-1789 PKCS7 crash with missing EnvelopedContent CVE-2015-1790 CMS verify infinite loop with unkno...

7.5CVSS6AI score0.9986EPSS
Exploits2References1
Total number of security vulnerabilities5000