Lucene search
K
FreebsdMost viewed

6583 matches found

FreeBSD
FreeBSD
•added 2023/06/22 12:0 a.m.•36 views

electron{23,24} -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-3215. Security: backported fix for CVE-2023-3216...

8.8CVSS8.7AI score0.13813EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2023/04/25 12:0 a.m.•36 views

git -- Multiple vulnerabilities

git developers reports: This update includes 2 security fixes: CVE-2023-25652: By feeding specially crafted input to git apply --reject, a path outside the working tree can be overwritten with partially controlled contents corresponding to the rejected hunks from the given patch CVE-2023-29007: A...

7.8CVSS6.3AI score0.52164EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2023/01/17 12:0 a.m.•36 views

rack -- Multiple vulnerabilities

Aaron Patterson reports: CVE-2022-44570 Carefully crafted input can cause the Range header parsing component in Rack to take an unexpected amount of time, possibly resulting in a denial of service attack vector. Any applications that deal with Range requests such as streaming applications, or...

7.5CVSS4.3AI score0.01626EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2022/12/23 12:0 a.m.•36 views

py39-setuptools58 -- denial of service vulnerability

SCH227 reports: Python Packaging Authority PyPA's setuptools is a library designed to facilitate packaging Python projects. Setuptools version 65.5.0 and earlier could allow remote attackers to cause a denial of service by fetching malicious HTML from a PyPI package or custom PackageIndex page du...

5.9CVSS6.2AI score0.02617EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2022/12/16 12:0 a.m.•36 views

Grafana -- Stored XSS in ResourcePicker component

Grafana Labs reports: On 2022-12-16 during an internal audit of Grafana, a member of the security team found a stored XSS vulnerability affecting the core plugin GeoMap. The stored XSS vulnerability was possible due to SVG-files weren't properly sanitized and allowed arbitrary JavaScript to be...

7.3CVSS2.1AI score0.00828EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/10/31 12:0 a.m.•36 views

Tomcat -- Request Smuggling

Apache Tomcat reports: If Tomcat was configured to ignore invalid HTTP headers via setting rejectIllegalHeader to false the default for 8.5.x only, Tomcat did not reject a request containing an invalid Content-Length header making a request smuggling attack possible if Tomcat was located behind a...

7.5CVSS0.9AI score0.01448EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/06/21 12:0 a.m.•36 views

Django -- multiple vulnerabilities

The Django Project reports: CVE-2022-34265: Potential SQL injection via Trunckind and Extractlookupname arguments...

9.8CVSS7AI score0.73274EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2022/05/04 12:0 a.m.•36 views

clamav -- Multiple vulnerabilities

The ClamAV project reports: Fixed a possible double-free vulnerability in the OLE2 file parser. Issue affects versions 0.104.0 through 0.104.2. Issue identified by OSS-Fuzz. Fixed a possible infinite loop vulnerability in the CHM file parser. Issue affects versions 0.104.0 through 0.104.2 and LTS...

8.6CVSS0.8AI score0.0663EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/04/06 12:0 a.m.•36 views

FreeBSD -- Potential jail escape vulnerabilities in netmap

Problem Description: The total size of the user-provided nmreq to nmreqcopyin was first computed and then trusted during the copyin. This time-of-check to time-of-use bug could lead to kernel memory corruption. CVE-2022-23084 A user-provided integer option was passed to nmreqcopyin without checki...

9.8CVSS1.4AI score0.0049EPSS
Exploits0
FreeBSD
FreeBSD
•added 2022/02/25 12:0 a.m.•36 views

Apache OpenOffice -- master password vulnerabilities

The Apache Openoffice project reports: Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in OpenOffice existed where the required initialization...

8.8CVSS3.4AI score0.01419EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/02/11 12:0 a.m.•36 views

cassandra3 -- arbitrary code execution

Marcus Eriksson reports: When running Apache Cassandra with the following configuration: enableuserdefinedfunctions: true enablescripteduserdefinedfunctions: true enableuserdefinedfunctionsthreads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need...

9.1CVSS2.9AI score0.54889EPSS
Exploits7References1
FreeBSD
FreeBSD
•added 2022/02/10 12:0 a.m.•36 views

go -- multiple vulnerabilities

The Go project reports: crypto/elliptic: fix IsOnCurve for big.Int values that are not valid coordinates Some big.Int values that are not valid field elements negative or overflowing might cause Curve.IsOnCurve to incorrectly return true. Operating on those values may cause a panic or an invalid...

2.7AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2021/12/16 12:0 a.m.•36 views

strongswan - Incorrect Handling of Early EAP-Success Messages

Strongswan Release Notes reports: Fixed a vulnerability in the EAP client implementation that was caused by incorrectly handling early EAP-Success messages. It may allow to bypass the client and in some scenarios even the server authentication, or could lead to a denial-of-service attack. This...

9.1CVSS2.3AI score0.02761EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/11/26 12:0 a.m.•36 views

OpenEXR -- Heap-buffer-overflow in Imf_3_1::LineCompositeTask::execute

Cary Phillips reports: OpenEXR Version 3.1.4 is a patch release that ... addresses one public security vulnerability: CVE-2021-45942 Heap-buffer-overflow in Imf31::LineCompositeTask::execute and several specific OSS-fuzz issues...

5.5CVSS2.4AI score0.01772EPSS
Exploits1References4
FreeBSD
FreeBSD
•added 2021/11/24 12:0 a.m.•36 views

rubygem-cgi -- cookie prefix spoofing in CGI::Cookie.parse

oooooooq reports: The old versions of CGI::Cookie.parse applied URL decoding to cookie names. An attacker could exploit this vulnerability to spoof security prefixes in cookie names, which may be able to trick a vulnerable application. By this fix, CGI::Cookie.parse no longer decodes cookie names...

7.5CVSS7.6AI score0.02931EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2021/09/24 12:0 a.m.•36 views

chromium -- use after free in Portals

Chrome Releases reports: 1251727 High CVE-2021-37973 : Use after free in Portals. Reported by Clement Lecigne from Google TAG, with technical assistance from Sergei Glazunov and Mark Brand from Google Project Zero on 2021-09-21 Google is aware that an exploit for CVE-2021-37973 exists in the wild...

9.6CVSS0.2AI score0.11735EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/08/25 12:0 a.m.•36 views

py-tflite -- denial of service vulnerability

Yakun Zhang of Baidu Security reports: An attacker can craft a TFLite model that would trigger a null pointer dereference, which would result in a crash and denial of service...

7.8CVSS5.8AI score0.00165EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/08/24 12:0 a.m.•36 views

FreeBSD -- libfetch out of bounds read

Problem Description: The passive mode in FTP communication allows an out of boundary read while libfetch uses strtol to parse the relevant numbers into address bytes. It does not check if the line ends prematurely. If it does, the for-loop condition checks for p == '\0' one byte too late because...

9.1CVSS2.9AI score0.02637EPSS
Exploits1
FreeBSD
FreeBSD
•added 2021/07/07 12:0 a.m.•36 views

go -- crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters

The Go project reports: crypto/tls clients can panic when provided a certificate of the wrong type for the negotiated parameters. net/http clients performing HTTPS requests are also affected. The panic can be triggered by an attacker in a privileged network position without access to the server...

6.5CVSS2.4AI score0.06975EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2021/06/25 12:0 a.m.•36 views

Ansible -- Ansible user credentials disclosure in ansible-connection module

Red Hat reports: A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality...

5.5CVSS1.1AI score0.00384EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2021/05/26 12:0 a.m.•36 views

isc-dhcp -- remotely exploitable vulnerability

Michael McNally reports: Program code used by the ISC DHCP package to read and parse stored leases has a defect that can be exploited by an attacker to cause one of several undesirable outcomes...

7.4CVSS2.8AI score0.06118EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2021/04/06 12:0 a.m.•36 views

OpenDMARC - Multiple vulnerabilities

OpenDMARC releases prior to 1.4.1 are susceptible to the following vulnerabilities: CVE-2019-16378 OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 is prone to a signature-bypass vulnerability with multiple From: addresses, which might affect applications that consider a domain name to be...

9.8CVSS0.9AI score0.03684EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2021/02/24 12:0 a.m.•36 views

FreeBSD -- login.access fails to apply rules

Problem Description: A regression in the login.access5 rule processor has the effect of causing rules to fail to match even when they should not. This means that rules denying access may be ignored. Impact: The configuration in login.access5 may not be applied, permitting login access to users ev...

5.3CVSS2.4AI score0.00724EPSS
Exploits0
FreeBSD
FreeBSD
•added 2021/02/20 12:0 a.m.•36 views

asterisk -- Crash when negotiating T.38 with a zero port

The Asterisk project reports: When Asterisk sends a re-invite initiating T.38 faxing and the endpoint responds with a m=image line and zero port, a crash will occur in Asterisk. This is a reoccurrence of AST-2019-004...

6.5CVSS2.2AI score0.0348EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/02/01 12:0 a.m.•36 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: Stored XSS in merge request Stored XSS in epic's pages Sensitive GraphQL variables exposed in structured log Guest user can see tag names in private projects Information disclosure via error message DNS rebinding protection bypass Validate existence of private project...

4.3CVSS1.2AI score0.01023EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2021/01/13 12:0 a.m.•36 views

go -- cmd/go: packages using cgo can cause arbitrary code execution at build time; crypto/elliptic: incorrect operations on the P-224 curve

The Go project reports: The go command may execute arbitrary code at build time when cgo is in use on Windows. This may occur when running "go get", or any other command that builds code. Only users who build untrusted code and don't execute it are affected. In addition to Windows users, this can...

8.1AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2020/12/01 12:0 a.m.•36 views

xorg-server -- Multiple input validation failures in X server XKB extension

The X.org project reports: These issues can lead to privileges elevations for authorized clients on systems where the X server is running privileged. Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory accesses in the X server. Insufficient checks on input...

7.8CVSS2.4AI score0.00393EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/10/06 12:0 a.m.•36 views

chromium -- multiple vulnerabilities

Chrome releases reports: This release contains 35 security fixes, including: 1127322 Critical CVE-2020-15967: Use after free in payments. Reported by Man Yue Mo of GitHub Security Lab on 2020-09-11 1126424 High CVE-2020-15968: Use after free in Blink. Reported by Anonymous on 2020-09-09 1124659...

8.8CVSS1AI score0.02553EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2020/09/02 12:0 a.m.•36 views

FreeBSD -- SCTP socket use-after-free bug

Problem Description: Due to improper handling in the kernel, a use-after-free bug can be triggered by sending large user messages from multiple threads on the same socket. Impact: Triggering the use-after-free situation may result in unintended kernel behaviour including a kernel panic...

5.5CVSS0.1AI score0.00399EPSS
Exploits0
FreeBSD
FreeBSD
•added 2020/09/01 12:0 a.m.•36 views

Mbed TLS -- Local side channel attack on classical CBC decryption in (D)TLS

Manuel Pégourié-Gonnard reports: When decrypting/authenticating DTLS record in a connection using a CBC ciphersuite without the Encrypt-then-Mac extension RFC 7366, Mbed TLS used dummy rounds of the compression function associated with the hash used for HMAC in order to hide the length of the...

5.5CVSS2.8AI score0.00368EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/07/27 12:0 a.m.•36 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update contains 8 security fixes, including: 1105318 High CVE-2020-6537: Type Confusion in V8. Reported by Alphalaab on 2020-07-14 1096677 High CVE-2020-6538: Inappropriate implementation in WebView. Reported by Yongke Wang@Rudykewang and Aryb1n@aryb1n of Tencent...

8.8CVSS8.7AI score0.22868EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/06/03 12:0 a.m.•36 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers. 1082105 High CVE-2020-6493: Use after free in WebAuthentication. Reported by Anonymous on 2020-05-13 1083972 High CVE-2020-6494: Incorrect security UI in...

9.6CVSS0.2AI score0.01682EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/04/20 12:0 a.m.•36 views

malicious URLs can cause git to send a stored credential to wrong server

git security advisory reports: Git uses external "credential helper" programs to store and retrieve passwords or other credentials from secure storage provided by the operating system. Specially-crafted URLs that are considered illegal as of the recently published Git versions can cause Git to se...

7.5CVSS2AI score0.03899EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/04/14 12:0 a.m.•36 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: NuGet Package and File Disclosure through GitLab Workhorse Job Artifact Uploads and File Disclosure through GitLab Workhorse Incorrect membership following group removal Logging of Praefect tokens Update Rack dependency Update OpenSSL dependency...

7.5CVSS2.9AI score0.01174EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/03/31 12:0 a.m.•36 views

GnuTLS -- flaw in DTLS protocol implementation

The GnuTLS project reports: It was found that GnuTLS 3.6.3 introduced a regression in the DTLS protocol implementation. This caused the DTLS client to not contribute any randomness to the DTLS negotiation breaking the security guarantees of the DTLS protocol...

7.4CVSS3AI score0.03388EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/03/19 12:0 a.m.•36 views

FreeBSD -- Incorrect user-controlled pointer use in epair

Problem Description: Incorrect use of a potentially user-controlled pointer in the kernel allowed vnet jailed users to panic the system and potentially execute aribitrary code in the kernel. Impact: Users with root level access or the PRIVNETIFCREATE privilege can panic the system, or potentially...

9.1CVSS6.4AI score0.01834EPSS
Exploits0
FreeBSD
FreeBSD
•added 2019/12/10 12:0 a.m.•36 views

samba -- multiple vulnerabilities

The Samba Team reports: CVE-2019-14861: An authenticated user can crash the DCE/RPC DNS management server by creating records with matching the zone name. CVE-2019-14870: The DelegationNotAllowed Kerberos feature restriction was not being applied when processing protocol transition requests...

6.4CVSS2.8AI score0.02783EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/08/07 12:0 a.m.•36 views

asterisk -- Remote Crash Vulnerability in audio transcoding

The Asterisk project reports: When audio frames are given to the audio transcoding support in Asterisk the number of samples are examined and as part of this a message is output to indicate that no samples are present. A change was done to suppress this message for a particular scenario in which...

7.5CVSS0.9AI score0.21924EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/08/06 12:0 a.m.•36 views

FreeBSD -- Multiple vulnerabilities in bzip2

Problem Description: The decompressor used in bzip2 contains a bug which can lead to an out-of-bounds write when processing a specially crafted bzip21 file. bzip2recover contains a heap use-after-free bug which can be triggered when processing a specially crafted bzip21 file. Impact: An attacker...

1.6AI score
Exploits0
FreeBSD
FreeBSD
•added 2019/05/08 12:0 a.m.•36 views

drupal -- Drupal core - Moderately critical

Drupal Security Team reports: CVE-2019-11831: By-passing protection of Phar Stream Wrapper Interceptor. In order to intercept file invocations like fileexists or stat on compromised Phar archives the base name has to be determined and checked before allowing to be handled by PHP Phar stream...

9.8CVSS0.7AI score0.05586EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/04/10 12:0 a.m.•36 views

FreeBSD -- SAE confirm missing state validation

Problem Description: When hostapd is used to operate an access point with SAE Simultaneous Authentication of Equals; also known as WPA3-Personal, an invalid authentication sequence could result in the hostapd process terminating due to a NULL pointer dereference when processing SAE confirm messag...

7.5CVSS0.2AI score0.05224EPSS
Exploits0
FreeBSD
FreeBSD
•added 2019/01/21 12:0 a.m.•36 views

powerdns-recursor -- multiple vulnerabilities

PowerDNS Team reports: CVE-2019-3806: An issue has been found in PowerDNS Recursor where Lua hooks are not properly applied to queries received over TCP in some specific combination of settings, possibly bypassing security policies enforced using Lua. When the recursor is configured to run with...

9.8CVSS2.5AI score0.0146EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/07/14 12:0 a.m.•36 views

znc -- multiple vulnerabilities

Mitre reports: ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming from the network, allowing a non-admin user to escalate his privilege and inject rogue values into znc.conf. ZNC before 1.7.1-rc1 is prone to a path traversal flaw via ../ in a web skin name to access files...

6.5CVSS4.8AI score0.02017EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/06/11 12:0 a.m.•36 views

asterisk -- PJSIP endpoint presence disclosure when using ACL

The Asterisk project reports: When endpoint specific ACL rules block a SIP request they respond with a 403 forbidden. However, if an endpoint is not identified then a 401 unauthorized response is sent. This vulnerability just discloses which requests hit a defined endpoint. The ACL rules cannot b...

1.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2018/04/16 12:0 a.m.•36 views

patch -- multiple vulnerabilities

NVD reports: An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuitdifftype function in pch.c, aka a "mangled rename" issue. A double free exists in the anotherhunk function in pch...

9.3CVSS7.3AI score0.08585EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2018/04/14 12:0 a.m.•36 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 4 security fixes in this release: 835887 Critical: Chain leading to sandbox escape. Reported by Anonymous on 2018-04-23 836858 High CVE-2018-6121: Privilege Escalation in extensions 836141 High CVE-2018-6122: Type confusion in V8 833721 High CVE-2018-6120: Heap...

8.8CVSS1.6AI score0.02422EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/04/14 12:0 a.m.•36 views

perl -- multiple vulnerabilities

perldelta: CVE-2018-6797: heap-buffer-overflow WRITE of size 1 in Sregatom regcomp.c A crafted regular expression could cause a heap buffer write overflow, with control over the bytes written. perl 132227 CVE-2018-6798: Heap-buffer-overflow in Perlbytedumpstring utf8.c Matching a crafted locale...

9.8CVSS1.5AI score0.10866EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2018/04/12 12:0 a.m.•36 views

chromium -- vulnerability

Google Chrome Releases reports: 3 security fixes in this release: 831963 Critical CVE-2018-6118: Use after free in Media Cache. Reported by Ned Williamson on 2018-04-12 837635 Various fixes from internal audits, fuzzing and other initiatives...

8.8CVSS2AI score0.01495EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/03/16 12:0 a.m.•36 views

SQLite -- Corrupt DB can cause a NULL pointer dereference

MITRE reports: SQLite databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c...

7.5CVSS1.1AI score0.08186EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/02/05 12:0 a.m.•36 views

PostgreSQL vulnerabilities

The PostgreSQL project reports: CVE-2018-1052: Fix the processing of partition keys containing multiple expressions only for PostgreSQL-10.x CVE-2018-1053: Ensure that all temporary files made with "pgupgrade" are non-world-readable...

7CVSS7AI score0.01826EPSS
Exploits0
Total number of security vulnerabilities5000