Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2022/07/01 12:0 a.m.•44 views

OpenSSL -- Heap memory corruption with RSA private key operation

The OpenSSL project reports: The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X8664 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during t...

10CVSS3.4AI score0.44881EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2022/06/09 12:0 a.m.•44 views

git -- Multiple vulnerabilities

This release contains 2 security fixes: CVE-2022-39253 When relying on the --local clone optimization, Git dereferences symbolic links in the source repository before creating hardlinks or copies of the dereferenced link in the destination repository. This can lead to surprising behavior where...

8.8CVSS8.5AI score0.02938EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2022/05/24 12:0 a.m.•44 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 32 security fixes, including: 1324864 Critical CVE-2022-1853: Use after free in Indexed DB. Reported by Anonymous on 2022-05-12 1320024 High CVE-2022-1854: Use after free in ANGLE. Reported by SeongHwan Park SeHwa on 2022-04-27 1228661 High...

9.6CVSS0.1AI score0.0088EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2022/02/10 12:0 a.m.•44 views

MariaDB -- Multiple vulnerabilities

MariaDB reports: MariaDB reports 5 vulnerabilities in supported versions without further detailed information...

7.8CVSS3.1AI score0.00689EPSS
Exploits1References4
FreeBSD
FreeBSD
•added 2022/01/19 12:0 a.m.•44 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 26 security fixes, including: 1284367 Critical CVE-2022-0289: Use after free in Safe browsing. Reported by Sergei Glazunov of Google Project Zero on 2022-01-05 12601341260007 High CVE-2022-0290: Use after free in Site isolation. Reported by Brendon...

9.6CVSS0.2AI score0.85352EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/12/14 12:0 a.m.•44 views

Mbed TLS -- Potential double-free after an out of memory error

Manuel Pégourié-Gonnard reports: If mbedtlssslsetsession or mbedtlssslgetsession were to fail with MBEDTLSERRSSLALLOCFAILED in an out of memory condition, then calling mbedtlssslsessionfree and mbedtlssslfree in the usual manner would cause an internal session buffer to be freed twice, due to two...

9.8CVSS2.7AI score0.02569EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2021/12/13 12:0 a.m.•44 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 5 security fixes, including: 1263457 Critical CVE-2021-4098: Insufficient data validation in Mojo. Reported by Sergei Glazunov of Google Project Zero on 2021-10-26 1270658 High CVE-2021-4099: Use after free in Swiftshader. Reported by Aki Helin of...

8.8CVSS0.6AI score0.07836EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/10/28 12:0 a.m.•44 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Stored XSS via ipynb files Pipeline schedules on imported projects can be set to automatically active after import Potential Denial of service via Workhorse Improper Access Control allows Merge Request creator to bypass locked status Projects API discloses ID and name of private...

8.7CVSS2.8AI score0.60729EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2021/04/25 12:0 a.m.•44 views

Exiv2 -- Multiple vulnerabilities

Exiv2 teams reports: Multiple vulnerabilities covering buffer overflows, out-of-bounds, read of uninitialized memory and denial of serivce. The heap overflow is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to ga...

7.8CVSS2.3AI score0.02295EPSS
Exploits2References9
FreeBSD
FreeBSD
•added 2021/03/22 12:0 a.m.•44 views

dovecot -- multiple vulnerabilities

Dovecot team reports: CVE-2021-29157: Dovecot does not correctly escape kid and azp fields in JWT tokens. This may be used to supply attacker controlled keys to validate tokens in some configurations. This requires attacker to be able to write files to local disk. CVE-2021-33515: On-path attacker...

7.5CVSS1.8AI score0.02837EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2021/02/24 12:0 a.m.•44 views

FreeBSD -- Xen grant mapping error handling issues

Problem Description: Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one reported to the backend driver, and the backend driver then loops over the results, performing follow-up actions based on...

5.5CVSS6.6AI score0.00346EPSS
Exploits0
FreeBSD
FreeBSD
•added 2021/02/12 12:0 a.m.•44 views

openexr, ilmbase -- security fixes related to reading corrupted input files

Cary Phillips reports: Patch release with various bug/sanitizer/security fixes, primarily related to reading corrupted input files...

5.5CVSS1.5AI score0.01848EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2020/12/07 12:0 a.m.•44 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: XSS in Zoom Meeting URL Limited Information Disclosure in Private Profile User email exposed via GraphQL endpoint Group and project membership potentially exposed via GraphQL Search terms logged in search parameter in rails logs Un-authorised access to feature flag user list A...

6.5CVSS1.6AI score0.01244EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/10/07 12:0 a.m.•44 views

MariaDB -- Undisclosed vulnerability

The MariaDB project reports: Details of this vulnerability have not yet been disclosed...

9CVSS2AI score0.05539EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2020/07/01 12:0 a.m.•44 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Missing Permission Check on Time Tracking Cross-Site Scripting in PyPi Files API Insecure Authorization Check on Private Project Security Dashboard Cross-Site Scripting in References Cross-Site Scripting in Group Names Cross-Site Scripting in Blob Viewer Cross-Site Scripting in...

8.8CVSS1.3AI score0.04182EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/04/16 12:0 a.m.•44 views

cacti -- XSS exposure

Cacti developer reports: Lack of escaping of color items can lead to XSS exposure...

6.1CVSS1.3AI score0.02139EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2020/04/14 12:0 a.m.•44 views

malicious URLs may present credentials to wrong server

git security advisory reports: Git uses external "credential helper" programs to store and retrieve passwords or other credentials from secure storage provided by the operating system. Specially-crafted URLs that contain an encoded newline can inject unintended values into the credential helper...

9.3CVSS0.2AI score0.10047EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2019/10/30 12:0 a.m.•44 views

Gitlab -- Disclosure Vulnerabilities

Gitlab reports: Source branch of a MR could be removed by an unauthorised user Private group members could be listed Disclosure of System Notes via Elasticsearch integration Disclosure of Private Comments via Elasticsearch integration Confirm existence of private repositories Private group...

8.8CVSS1.2AI score0.01657EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/08/16 12:0 a.m.•44 views

asterisk -- Remote crash vulnerability in HTTP websocket upgrade

The Asterisk project reports: There is a stack overflow vulnerability in the reshttpwebsocket.so module of Asterisk that allows an attacker to crash Asterisk via a specially crafted HTTP request to upgrade the connection to a websocket. The attackers request causes Asterisk to run out of stack...

7.5CVSS2.5AI score0.53381EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/07/11 12:0 a.m.•44 views

curl -- SMTP send heap buffer overflow

Peter Wu reports: curl might overflow a heap based memory buffer when sending data over SMTP and using a reduced read buffer...

9.8CVSS0.4AI score0.06433EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2018/06/14 12:0 a.m.•44 views

password-store -- GPG parsing vulnerabilities

Jason A. Donenfeld reports: Markus Brinkmann discovered that the parsing of gpg command line output with regexes isn't anchored to the beginning of the line, which means an attacker can generate a malicious key that simply has the verification string as part of its username. This has a number of...

9.8CVSS2.6AI score0.04648EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/05/01 12:0 a.m.•44 views

python 2.7 -- multiple vulnerabilities

python release notes: Multiple vulnerabilities has been fixed in this release. Please refer to the CVE list for details...

9.8CVSS1.9AI score0.13802EPSS
Exploits5References2
FreeBSD
FreeBSD
•added 2018/04/04 12:0 a.m.•44 views

nghttp2 -- Denial of service due to NULL pointer dereference

nghttp2 blog: If ALTSVC frame is received by libnghttp2 and it is larger than it can accept, the pointer field which points to ALTSVC frame payload is left NULL. Later libnghttp2 attempts to access another field through the pointer, and gets segmentation fault. ALTSVC frame is defined by RFC 7838...

7.5CVSS2AI score0.10782EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/03/21 12:0 a.m.•44 views

node.js -- multiple vulnerabilities

Node.js reports: Node.js Inspector DNS rebinding vulnerability CVE-2018-7160 Node.js 6.x and later include a debugger protocol also known as "inspector" that can be activated by the --inspect and related command line flags. This debugger service was vulnerable to a DNS rebinding attack which coul...

8.8CVSS7.1AI score0.09916EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/04/12 12:0 a.m.•44 views

FreeBSD -- Multiple vulnerabilities of ntp

Problem Description: A vulnerability was discovered in the NTP server's parsing of configuration directives. CVE-2017-6464 A vulnerability was found in NTP, in the parsing of packets from the DPTS Clock. CVE-2017-6462 A vulnerability was discovered in the NTP server's parsing of configuration...

7.8CVSS6.8AI score0.05239EPSS
Exploits2
FreeBSD
FreeBSD
•added 2017/04/04 12:0 a.m.•44 views

libXdmcp -- insufficient entropy generating session keys

The freedesktop and x.org project reports: It was discovered that libXdmcp before 1.1.3 used weak entropy to generate session keys on platforms without arc4randombuf but with getentropy. On a multi-user system using xdmcp, a local attacker could potentially use information available from the...

6.5CVSS1.7AI score0.00534EPSS
Exploits3References2
FreeBSD
FreeBSD
•added 2016/12/13 12:0 a.m.•44 views

xen-kernel -- x86 CMPXCHG8B emulation fails to ignore operand size override

The Xen Project reports: The x86 instruction CMPXCHG8B is supposed to ignore legacy operand size overrides; it only honors the REX.W override making it CMPXCHG16B. So, the operand size is always 8 or 16. When support for CMPXCHG16B emulation was added to the instruction emulator, this restriction...

3.3CVSS0.7AI score0.00421EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/09/08 12:0 a.m.•44 views

openjpeg -- multiple vulnerabilities

Tencent's Xuanwu LAB reports: A Heap Buffer Overflow Out-of-Bounds Write issue was found in function opjdwtinterleavev of dwt.c. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenJPEG. An integer overflow issue exists in function...

8.8CVSS6.1AI score0.04702EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2016/07/07 12:0 a.m.•44 views

samba -- client side SMB2/3 required signing can be downgraded

Samba team reports: A man in the middle attack can disable client signing over SMB2/3, even if enforced by configuration parameters...

7.5CVSS3.8AI score0.03097EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/06/09 12:0 a.m.•44 views

OpenSSL -- vulnerability in DSA signing

The OpenSSL team reports: Operations in the DSA signing algorithm should run in constant time in order to avoid side channel attacks. A flaw in the OpenSSL DSA implementation means that a non-constant time codepath is followed for certain operations. This has been demonstrated through a...

5.5CVSS2.7AI score0.01174EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2016/05/03 12:0 a.m.•44 views

ImageMagick -- multiple vulnerabilities

Openwall reports: Insufficient filtering for filename passed to delegate's command allows remote code execution during conversion of several file formats. Any service which uses ImageMagick to process user supplied images and uses default delegates.xml / policy.xml, may be vulnerable to this issu...

10CVSS0.9AI score0.97485EPSS
Exploits13References2
FreeBSD
FreeBSD
•added 2016/03/02 12:0 a.m.•44 views

node -- multiple vulnerabilities

Jeremiah Senkpiel reports: Fix a double-free defect in parsing malformed DSA keys that may potentially be used for DoS or memory corruption attacks. Fix a defect that can cause memory corruption in certain very rare cases Fix a defect that makes the CacheBleed Attack possible...

7.5CVSS8.4AI score0.27022EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2015/11/10 12:0 a.m.•44 views

flash -- multiple vulnerabilities

Adobe reports: These updates resolve a type confusion vulnerability that could lead to code execution CVE-2015-7659. These updates resolve a security bypass vulnerability that could be exploited to write arbitrary data to the file system under user permissions CVE-2015-7662. These updates resolve...

10CVSS7.4AI score0.40682EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2015/09/22 12:0 a.m.•44 views

xen-tools -- libxl fails to honour readonly flag on disks with qemu-xen

The Xen Project reports: Callers of libxl can specify that a disk should be read-only to the guest. However, there is no code in libxl to pass this information to qemu-xen the upstream-based qemu; and indeed there is no way in qemu to make a disk read-only. The vulnerability is exploitable only v...

3.6CVSS7.7AI score0.00417EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/09/15 12:0 a.m.•44 views

miniupnpc -- buffer overflow

Talos reports: An exploitable buffer overflow vulnerability exists in the XML parser functionality of the MiniUPnP library. A specially crafted XML response can lead to a buffer overflow on the stack resulting in remote code execution. An attacker can set up a server on the local network to trigg...

6.8CVSS7.4AI score0.04783EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2015/09/01 12:0 a.m.•44 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 29 security fixes in this release, including: 516377 High CVE-2015-1291: Cross-origin bypass in DOM. Credit to anonymous. 522791 High CVE-2015-1292: Cross-origin bypass in ServiceWorker. Credit to Mariusz Mlynski. 524074 High CVE-2015-1293: Cross-origin bypass in...

7.5CVSS8.7AI score0.0224EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2015/08/19 12:0 a.m.•44 views

bind -- denial of service vulnerability

ISC reports: An incorrect boundary check in openpgpkey61.c can cause named to terminate due to a REQUIRE assertion failure. This defect can be deliberately exploited by an attacker who can provide a maliciously constructed response in answer to a query...

7.1CVSS9AI score0.26071EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/07/23 12:0 a.m.•44 views

wordpress -- XSS vulnerability

Gary Pendergast reports: WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. This was reported by Jon Cave and fixed by Robert Chapin, both of the WordPress security team...

5.9AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/06/10 12:0 a.m.•44 views

django -- multiple vulnerabilities

Tim Graham reports: In accordance with our security release policy, the Django team is issuing multiple releases -- Django 1.4.21, 1.7.9, and 1.8.3. These releases are now available on PyPI and our download page. These releases address several security issues detailed below. We encourage all user...

7.8CVSS6.6AI score0.07266EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2015/06/04 12:0 a.m.•44 views

redis -- EVAL Lua Sandbox Escape

Ben Murphy reports: It is possible to break out of the Lua sandbox in Redis and execute arbitrary code. This shouldn’t pose a threat to users under the trusted Redis security model where only trusted users can connect to the database. However, in real deployments there could be databases that can...

10CVSS7.7AI score0.09636EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2015/05/25 12:0 a.m.•44 views

krb5 -- requires_preauth bypass in PKINIT-enabled KDC

MIT reports: In MIT krb5 1.12 and later, when the KDC is configured with PKINIT support, an unauthenticated remote attacker can bypass the requirespreauth flag on a client principal and obtain a ciphertext encrypted in the principal's long-term key. This ciphertext could be used to conduct an...

5.8CVSS7.5AI score0.02838EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/05/14 12:0 a.m.•44 views

rubygems -- request hijacking vulnerability

Jonathan Claudius reports: RubyGems provides the ability of a domain to direct clients to a separate host that is used to fetch gems and make API calls against. This mechanism is implemented via DNS, specifically a SRV record rubygems.tcp under the original requested domain. RubyGems did not...

5CVSS8.1AI score0.08934EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/14 12:0 a.m.•44 views

libuv -- incorrect revocation order while relinquishing privileges

Nodejs releases reports: CVE-2015-0278 This may potentially allow an attacker to gain elevated privileges...

10CVSS6.7AI score0.03242EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/12 12:0 a.m.•44 views

Adobe Flash Player -- critical vulnerabilities

Adobe reports: Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. These updates resolve memory corruption vulnerabilities that could lea...

10CVSS10.2AI score0.71536EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2015/03/10 12:0 a.m.•44 views

xen-kernel -- Hypervisor memory corruption due to x86 emulator flaw

The Xen Project reports: Instructions with register operands ignore eventual segment overrides encoded for them. Due to an insufficiently conditional assignment such a bogus segment override can, however, corrupt a pointer used subsequently to store the result of the instruction. A malicious gues...

7.2CVSS7.4AI score0.0057EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/08/21 12:0 a.m.•44 views

openoffice -- information disclosure vulnerability

Apache reports: The exposure exploits the way OLE previews are generated to embed arbitrary file data into a specially crafted document when it is opened. Data exposure is possible if the updated document is distributed to other parties...

4.3CVSS6.5AI score0.09864EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/07/03 12:0 a.m.•44 views

yii -- Remote arbitrary PHP code execution

Yii PHP Framework developers report: We are releasing Yii 1.1.15 to fix a security issue found in 1.1.14. We urge all 1.1.14 users to upgrade their Yii to this latest release. Note that the issue only affects 1.1.14. All previous releases are not affected. Upgrading to this release from 1.1.14 is...

7.5CVSS6.4AI score0.02122EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/04/01 12:0 a.m.•44 views

otrs -- Clickjacking issue

The OTRS Project reports: An attacker could embed OTRS in a hidden iframe tag of another page, tricking the user into clicking links in OTRS...

4.3CVSS8.4AI score0.01478EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/02/14 12:0 a.m.•44 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory reports: This advisory announces multiple security vulnerabilities that were found in Jenkins core. Please reference CVE/URL list for details...

9.8CVSS8.7AI score0.84362EPSS
Exploits10References1
FreeBSD
FreeBSD
•added 2013/10/29 12:0 a.m.•44 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2013-93 Miscellaneous memory safety hazards rv:25.0 / rv:24.1 / rv:17.0.10 MFSA 2013-94 Spoofing addressbar though SELECT element MFSA 2013-95 Access violation with XSLT and uninitialized data MFSA 2013-96 Improperly initialized memory and overflows in some...

10CVSS7.3AI score0.06493EPSS
Exploits0References11
Total number of security vulnerabilities5000