Lucene search
K
FreebsdMost viewed

6583 matches found

FreeBSD
FreeBSD
•added 2021/01/13 12:0 a.m.•41 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description Medium SECURITY-1452 / CVE-2021-21602 Arbitrary file read vulnerability in workspace browsers High SECURITY-1889 / CVE-2021-21603 XSS vulnerability in notification bar High SECURITY-1923 / CVE-2021-21604 Improper handling of REST API XML deserialization erro...

8CVSS2AI score0.02226EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/07/06 12:0 a.m.•41 views

php72 -- use of freed hash key

grigoritchy at gmail dot com reports: The pharparsezipfile function had use-after-free vulnerability because of mishandling of the actualalias variable...

4.8CVSS1.7AI score0.01661EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2020/07/04 12:0 a.m.•41 views

The Bouncy Castle Crypto APIs -- EC math vulnerability

The Bouncy Castle team reports:: Bouncy Castle BC Java before 1.66 has a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures...

5.9CVSS1.6AI score0.01522EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/05/18 12:0 a.m.•41 views

libexif -- multiple vulnerabilities

Release notes: Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others: CVE-2016-6328: fixed integer overflow when parsing maker notes CVE-2017-7544: fixed buffer overread CVE-2018-20030: Fix for recursion DoS CVE-2019-9278: replaced integer overflow checks the compiler could...

9.1CVSS5AI score0.04059EPSS
Exploits1References10
FreeBSD
FreeBSD
•added 2020/02/10 12:0 a.m.•41 views

Squid -- multiple vulnerabilities

The Squid developers reports: Improper Input Validation issues in HTTP Request processing CVE-2020-8449, CVE-2020-8450. Information Disclosure issue in FTP Gateway CVE-2019-12528. Buffer Overflow issue in extlmgroupacl helper CVE-2020-8517...

7.5CVSS1.4AI score0.7179EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2019/09/25 12:0 a.m.•41 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description Medium SECURITY-1498 / CVE-2019-10401 Stored XSS vulnerability in expandable textbox form control Medium SECURITY-1525 / CVE-2019-10402 XSS vulnerability in combobox form control Medium SECURITY-1537 1 / CVE-2019-10403 Stored XSS vulnerability in SCM tag...

5.4CVSS5.2AI score0.65753EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/09/11 12:0 a.m.•41 views

curl -- multiple vulnerabilities

curl security problems: CVE-2019-5481: FTP-KRB double-free libcurl can be told to use kerberos over FTP to a server, as set with the CURLOPTKRBLEVEL option. During such kerberos FTP data transfer, the server sends data to curl in blocks with the 32 bit size of each block first and then that amoun...

9.8CVSS1.4AI score0.17939EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2019/07/24 12:0 a.m.•41 views

FreeBSD -- telnet(1) client multiple vulnerabilities

Problem Description: Insufficient validation of environment variables in the telnet client supplied in FreeBSD can lead to stack-based buffer overflows. A stack- based overflow is present in the handling of environment variables when connecting via the telnet client to remote telnet servers. This...

7.8CVSS2.8AI score0.00587EPSS
Exploits2
FreeBSD
FreeBSD
•added 2019/06/20 12:0 a.m.•41 views

PostgreSQL -- Stack-based buffer overflow via setting a password

The PostgreSQL project reports: An authenticated user could create a stack-based buffer overflow by changing their own password to a purpose-crafted value. In addition to the ability to crash the PostgreSQL server, this could be further exploited to execute arbitrary code as the PostgreSQL...

9CVSS2.4AI score0.03711EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/03/18 12:0 a.m.•41 views

PowerDNS -- Insufficient validation in the HTTP remote backend

PowerDNS developers report: An issue has been found in PowerDNS Authoritative Server when the HTTP remote backend is used in RESTful mode without post=1 set, allowing a remote user to cause the HTTP backend to connect to an attacker-specified host instead of the configured one, via a crafted DNS...

8.8CVSS3.4AI score0.1286EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2019/03/13 12:0 a.m.•41 views

Rails -- Action View vulnerabilities

Ruby on Rails blog: Rails 4.2.11.1, 5.0.7.2, 5.1.6.2, 5.2.2.1, and 6.0.0.beta3 have been released! These contain the following important security fixes. It is recommended that users upgrade as soon as possible: CVE-2019-5418 File Content Disclosure in Action View CVE-2019-5419 Denial of Service...

7.8CVSS4.6AI score0.98507EPSS
Exploits19References1
FreeBSD
FreeBSD
•added 2018/12/11 12:0 a.m.•41 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2018-12407: Buffer overflow with ANGLE library when using VertexBuffer11 module CVE-2018-17466: Buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11 CVE-2018-18492: Use-after-free with select element CVE-2018-18493: Buffer overflow in...

9.8CVSS1.9AI score0.09646EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2018/06/27 12:0 a.m.•41 views

py-yaml -- arbitrary code execution

pyyaml reports: the PyYAML.load function could be easily exploited to call any Python function. That means it could call any system command using os.system...

9.8CVSS3.1AI score0.06031EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2018/06/13 12:0 a.m.•41 views

botan2 -- ECDSA side channel

botan2 developers report: A side channel in the ECDSA signature operation could allow a local attacker to recover the secret key. Found by Keegan Ryan of NCC Group. Bug introduced in 2.5.0, fixed in 2.7.0. The 1.10 branch is not affected...

5.9CVSS4.1AI score0.00499EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2018/06/07 12:0 a.m.•41 views

gnupg -- unsanitized output (CVE-2018-12020)

GnuPG reports: GnuPG did not sanitize input file names, which may then be output to the terminal. This could allow terminal control sequences or fake status messages to be injected into the output...

7.5CVSS1.6AI score0.08654EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2018/02/21 12:0 a.m.•41 views

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team reports: CVE-2017-6926: Comment reply form allows access to restricted content CVE-2017-6927: JavaScript cross-site scripting prevention is incomplete CVE-2017-6928: Private file access bypass - Moderately Critical CVE-2017-6929: jQuery vulnerability with untrusted domains -...

8.1CVSS6.7AI score0.01644EPSS
Exploits1
FreeBSD
FreeBSD
•added 2018/01/31 12:0 a.m.•41 views

quagga -- several security issues

Quagga reports: The Quagga BGP daemon, bgpd, does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or it may crash. The Quagga BGP daemon, bgpd, can double-free memor...

9.8CVSS7.3AI score0.74599EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2017/04/10 12:0 a.m.•41 views

chromium -- vulnerability

Google Chrome Releases reports: 62 security fixes in this release: 826626 Critical CVE-2018-6085: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-28 827492 Critical CVE-2018-6086: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-30 813876 High CVE-2018-6087:...

8.8CVSS0.4AI score0.09186EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2016/12/19 12:0 a.m.•41 views

ikiwiki -- multiple vulnerabilities

Mitre reports: ikiwiki 3.20161219 does not properly check if a revision changes the access permissions for a page on sites with the git and recentchanges plugins and the CGI interface enabled, which allows remote attackers to revert certain changes by leveraging permissions to change the page...

7.5CVSS7.1AI score0.02129EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2016/11/19 12:0 a.m.•41 views

tiff -- multiple vulnerabilities

libtiff project reports: Multiple flaws have been discovered in libtiff library and utilities...

9.8CVSS8.7AI score0.04767EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2016/09/29 12:0 a.m.•41 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 3 security fixes in this release, including: 642496 High CVE-2016-5177: Use after free in V8. Credit to Anonymous 651092 CVE-2016-5178: Various fixes from internal audits, fuzzing and other initiatives...

9.8CVSS2AI score0.01836EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/07/21 12:0 a.m.•41 views

gd -- multiple vulnerabilities

Pierre Joye reports: fix php bug 72339, Integer Overflow in gd2GetHeader CVE-2016-5766 gd: Buffer over-read issue when parsing crafted TGA file CVE-2016-6132 Integer overflow error within gdContributionsAlloc CVE-2016-6207 fix php bug 72494, invalid color index not handled, can lead to crash...

8.8CVSS2.4AI score0.07495EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2016/07/21 12:0 a.m.•41 views

perl -- local arbitrary code execution

Sawyer X reports: Perl 5.x before 5.22.3-RC2 and 5.24 before 5.24.1-RC2 do not properly remove . period characters from the end of the includes directory array, which might allow local users to gain privileges via a Trojan horse module under the current working directory...

7.8CVSS7.8AI score0.00779EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/07/07 12:0 a.m.•41 views

samba -- client side SMB2/3 required signing can be downgraded

Samba team reports: A man in the middle attack can disable client signing over SMB2/3, even if enforced by configuration parameters...

7.5CVSS3.8AI score0.03097EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/06/21 12:0 a.m.•41 views

Apache Commons FileUpload -- denial of service

Jochen Wiedmann reports: A malicious client can send file upload requests that cause the HTTP server using the Apache Commons Fileupload library to become unresponsive, preventing the server from servicing other requests...

7.8CVSS1.5AI score0.35927EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2016/06/01 12:0 a.m.•41 views

openssl -- denial of service

Mitre reports: OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service integer overflow and application crash or possibly have unspecified other impact by leveraging unexpected malloc behavior,...

9.8CVSS5.6AI score0.44505EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2016/02/08 12:0 a.m.•41 views

brotli -- buffer overflow

Google Chrome Releases reports: 583607 High CVE-2016-1624: Buffer overflow in Brotli. Credit to lukezli. Mozilla Foundation reports: Security researcher Luke Li reported a pointer underflow bug in the Brotli library's decompression that leads to a buffer overflow. This results in a potentially...

8.8CVSS2.5AI score0.01352EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2015/12/15 12:0 a.m.•41 views

qemu -- denial of service vulnerability in VMWARE VMXNET3 NIC support

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to a memory leakage flaw. It occurs when a guest repeatedly tries to activate the vmxnet3 device. A privileged guest user could use this flaw to leak...

7.4AI score
Exploits0References4
FreeBSD
FreeBSD
•added 2015/12/08 12:0 a.m.•41 views

xen-kernel -- XENMEM_exchange error handling issues

The Xen Project reports: Error handling in the operation may involve handing back pages to the domain. This operation may fail when in parallel the domain gets torn down. So far this failure unconditionally resulted in the host being brought down due to an internal error being assumed. This is...

4.7CVSS8.4AI score0.00383EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/12/08 12:0 a.m.•41 views

qemu -- denial of service vulnerability in VNC

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with the VNC display driver support is vulnerable to an arithmetic exception flaw. It occurs on the VNC server side while processing the 'SetPixelFormat' messages from a client. A privileged remote client could use this...

6.5CVSS7.7AI score0.03115EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2015/12/03 12:0 a.m.•41 views

openssl -- multiple vulnerabilities

OpenSSL project reports: BNmodexp may produce incorrect results on x8664 CVE-2015-3193 Certificate verify crash with missing PSS parameter CVE-2015-3194 X509ATTRIBUTE memory leak CVE-2015-3195 Race condition handling PSK identify hint CVE-2015-3196 Anon DH ServerKeyExchange with 0 p parameter...

7.5CVSS7.3AI score0.44016EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2015/11/30 12:0 a.m.•41 views

libraw -- index overflow in smal_decode_segment

ChenQin reports: The LibRaw raw image decoder has multiple vulnerabilities that can cause memory errors which may lead to code execution or other problems. In CVE-2015-8366, LibRaw's smaldecodesegment function does not handle indexes carefully, which can cause an index overflow...

9.8CVSS9.7AI score0.04939EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2015/10/29 12:0 a.m.•41 views

libxslt -- DoS vulnerability due to type confusing error

libxslt maintainer reports: CVE-2015-7995: http://www.openwall.com/lists/oss-security/2015/10/27/10 We need to check that the parent node is an element before dereferencing its namespace...

5CVSS8AI score0.04156EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2015/08/27 12:0 a.m.•41 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2015-95 Add-on notification bypass through data URLs MFSA 2015-94 Use-after-free when resizing canvas element during restyling...

9.4AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2015/07/23 12:0 a.m.•41 views

qemu -- stack buffer overflow while parsing SCSI commands

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with the SCSI device emulation support is vulnerable to a stack buffer overflow issue. It could occur while parsing SCSI command descriptor block with an invalid operation code. A privilegedCAPSYSRAWIO user inside guest...

5.5CVSS6.5AI score0.00434EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2015/06/21 12:0 a.m.•41 views

libav -- divide by zero

Agostino Sarubbo reports: libav: divide-by-zero in ffh263decodemba...

6.5CVSS6.9AI score0.01978EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/02/26 12:0 a.m.•41 views

rt -- Remote DoS, Information disclosure and Session Hijackingvulnerabilities

Best Practical reports: RT 3.0.0 and above, if running on Perl 5.14.0 or higher, are vulnerable to a remote denial-of-service via the email gateway; any installation which accepts mail from untrusted sources is vulnerable, regardless of the permissions configuration inside RT. This...

7.1CVSS8.3AI score0.02825EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/01/13 12:0 a.m.•41 views

django -- multiple vulnerabilities

The Django project reports: Today the Django team is issuing multiple releases -- Django 1.4.18, Django 1.6.10, and Django 1.7.3 -- as part of our security process. These releases are now available on PyPI and our download page. These releases address several security issues. We encourage all use...

6.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/01/12 12:0 a.m.•41 views

asterisk -- Mitigation for libcURL HTTP request injection vulnerability

The Asterisk project reports: CVE-2014-8150 reported an HTTP request injection vulnerability in libcURL. Asterisk uses libcURL in its funccurl.so module the CURL dialplan function, as well as its resconfigcurl.so cURL realtime backend modules. Since Asterisk may be configured to allow for...

4.3CVSS9.1AI score0.0681EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/12/10 12:0 a.m.•41 views

jasper -- multiple vulnerabilities

oCERT reports: The library is affected by a double-free vulnerability in function jasiccattrvaldestroy as well as a heap-based buffer overflow in function jp2decode. A specially crafted jp2 file can be used to trigger the vulnerabilities. oCERT reports: The library is affected by an off-by-one...

7.5CVSS7.7AI score0.18501EPSS
Exploits0References9
FreeBSD
FreeBSD
•added 2014/10/14 12:0 a.m.•41 views

libvpx -- out-of-bounds write

The Mozilla Project reports: Using the Address Sanitizer tool, security researcher Abhishek Arya Inferno of the Google Chrome Security Team found an out-of-bounds write when buffering WebM format video containing frames with invalid tile sizes. This can lead to a potentially exploitable crash...

7.5CVSS9.2AI score0.03944EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/06/25 12:0 a.m.•41 views

ansible -- remote code execution vulnerability

Ansible, Inc. reports: Incomplete Fix Remote Code Execution Vulnerability - Fixed in Ansible 1.6.4...

9.8CVSS9.5AI score0.05197EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/06/10 12:0 a.m.•41 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 4 security fixes in this release, including: 369525 High CVE-2014-3154: Use-after-free in filesystem api. Credit to Collin Payne. 369539 High CVE-2014-3155: Out-if-bounds read in SPDY. Credit to James March, Daniel Sommermann and Alan Frindell of Facebook. 369621...

7.5CVSS2.2AI score0.01745EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/12/20 12:0 a.m.•41 views

OpenX -- SQL injection vulnerability

Revive reports: An SQL-injection vulnerability was recently discovered and reported to the Revive Adserver team by Florian Sander. The vulnerability is known to be already exploited to gain unauthorised access to the application using brute force mechanisms, however other kind of attacks might be...

7.5CVSS6.7AI score0.02011EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2013/12/16 12:0 a.m.•41 views

asterisk -- multiple vulnerabilities

The Asterisk project reports: A 16 bit SMS message that contains an odd message length value will cause the message decoding loop to run forever. The message buffer is not on the stack but will be overflowed resulting in corrupted memory and an immediate crash. External control protocols, such as...

5CVSS7.3AI score0.14715EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2013/06/04 12:0 a.m.•41 views

dns/bind9* -- A recursive resolver can be crashed by a query for a malformed zone

ISC reports: A bug has been discovered in the most recent releases of BIND 9 which has the potential for deliberate exploitation as a denial-of-service attack. By sending a recursive resolver a query for a record in a specially malformed zone, an attacker can cause BIND 9 to exit with a fatal...

7.8CVSS6.8AI score0.0511EPSS
Exploits0
FreeBSD
FreeBSD
•added 2013/05/07 12:0 a.m.•41 views

nginx -- multiple vulnerabilities

The nginx project reports: A stack-based buffer overflow might occur in a worker process process while handling a specially crafted request, potentially resulting in arbitrary code execution. CVE-2013-2028 A security problem related to CVE-2013-2028 was identified, affecting some previous nginx...

7.5CVSS7.4AI score0.87475EPSS
Exploits18References2
FreeBSD
FreeBSD
•added 2013/03/03 12:0 a.m.•41 views

stunnel -- Remote Code Execution

Michal Trojnara reports: 64-bit versions of stunnel with the following conditions: NTLM authentication enabled CONNECT protocol negotiation enabled Configured in SSL client mode An attacker that can either control the proxy server specified in the "connect" option or execute MITM attacks on the T...

6.6CVSS7.5AI score0.02932EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2013/01/10 12:0 a.m.•41 views

java 7.x -- security manager bypass

US CERT reports: Java 7 Update 10 and earlier versions of Java 7 contain a vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. The Java JRE plug-in provides its own Security Manager. Typically, a web applet runs with a security manager...

10CVSS9.2AI score0.97612EPSS
Exploits38References2
FreeBSD
FreeBSD
•added 2012/07/26 12:0 a.m.•41 views

rubygem-actionpack -- Denial of Service

There is a DoS vulnerability in Action Pack digest authentication handling in authenticateorrequestwithhttpdigest...

5CVSS6.4AI score0.01905EPSS
Exploits1References1
Total number of security vulnerabilities5000