Lucene search
K
FreebsdMost viewed

6583 matches found

FreeBSD
FreeBSD
added 2017/04/28 12:0 a.m.33 views

roundcube -- arbitrary password resets

Roundcube reports: Roundcube Webmail allows arbitrary password resets by authenticated users. The problem is caused by an improperly restricted exec call in the virtualmin and sasl drivers of the password plugin...

8.8CVSS4.8AI score0.03471EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2017/04/04 12:0 a.m.33 views

xen-kernel -- broken check in memory_exchange() permits PV guest breakout

The Xen Project reports: The XSA-29 fix introduced an insufficient check on XENMEMexchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provided input/output arrays. A malicious or buggy 64-bit PV guest may be able to access all of system memory, allowing fo...

8.2CVSS2.2AI score0.01569EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2017/03/29 12:0 a.m.33 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 5 security fixes in this release, including: 698622 Critical CVE-2017-5055: Use after free in printing. Credit to Wadih Matar 699166 High CVE-2017-5054: Heap buffer overflow in V8. Credit to Nicolas Trippar of Zimperium zLabs 662767 High CVE-2017-5052: Bad cast in...

9.6CVSS9.5AI score0.02557EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2017/01/10 12:0 a.m.33 views

openssl -- timing attack vulnerability

Cesar Pereida Garcia reports: The signing function in crypto/ecdsa/ecdsaossl.c in certain OpenSSL versions and forks is vulnerable to timing attacks when signing with the standardized elliptic curve P-256 despite featuring constant-time curve operations and modular inversion. A software defect...

5.5CVSS3AI score0.00594EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2017/01/09 12:0 a.m.33 views

Ansible -- Command execution on Ansible controller from host

Computest reports: Computest found and exploited several issues that allow a compromised host to execute commands on the Ansible controller and thus gain access to other hosts controlled by that controller...

9.3CVSS2.6AI score0.1765EPSS
Exploits5References2
FreeBSD
FreeBSD
added 2016/11/22 12:0 a.m.33 views

xen-kernel -- x86 64-bit bit test instruction emulation broken

The Xen Project reports: The x86 instructions BT, BTC, BTR, and BTS, when used with a destination memory operand and a source register rather than an immediate operand, access a memory location offset from that specified by the memory operand as specified by the high bits of the register source. ...

8.8CVSS1.7AI score0.00509EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/11/13 12:0 a.m.33 views

ImageMagick -- heap overflow vulnerability

Bastien Roucaries reports: Imagemagick before 3cbfb163cff9e5b8cdeace8312e9bfee810ed02b suffer from a heap overflow in WaveletDenoiseImage. This problem is easily trigerrable from a Perl script...

5.5CVSS1.7AI score0.01898EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2016/11/01 12:0 a.m.33 views

django -- multiple vulnerabilities

The Django project reports: Today the Django team released Django 1.10.3, Django 1.9.11, and 1.8.16. These releases addresses two security issues detailed below. We encourage all users of Django to upgrade as soon as possible. User with hardcoded password created when running tests on Oracle DNS...

1.2AI score
Exploits0References1
FreeBSD
FreeBSD
added 2016/10/11 12:0 a.m.33 views

flash -- multiple vulnerabilities

Adobe reports: Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. These updates resolve a type confusion vulnerabilit...

9.3CVSS3.1AI score0.19899EPSS
Exploits4References1
FreeBSD
FreeBSD
added 2016/06/24 12:0 a.m.33 views

ruby-saml -- XML signature wrapping attack

RubySec reports: ruby-saml prior to version 1.3.0 is vulnerable to an XML signature wrapping attack in the specific scenario where there was a signature that referenced at the same time 2 elements but past the scheme validator process since 1 of the element was inside the encrypted assertion...

7.5CVSS2.8AI score0.01208EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2016/05/06 12:0 a.m.33 views

squid -- multiple vulnerabilities

The squid development team reports: Please reference CVE/URL list for details...

8.6CVSS1.9AI score0.79969EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2016/05/02 12:0 a.m.33 views

hostapd and wpa_supplicant -- psk configuration parameter update allowing arbitrary data to be written

Jouni Malinen reports: psk configuration parameter update allowing arbitrary data to be written 2016-1 - CVE-2016-4476/CVE-2016-4477...

7.8CVSS1.7AI score0.02858EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/04/22 12:0 a.m.33 views

wireshark -- multiple vulnerabilities

Wireshark development team reports: The following vulnerabilities have been fixed: wnpa-sec-2016-19 The NCP dissector could crash. Bug 11591 wnpa-sec-2016-20 TShark could crash due to a packet reassembly bug. Bug 11799 wnpa-sec-2016-21 The IEEE 802.11 dissector could crash. Bug 11824, Bug 12187...

5.9CVSS0.7AI score0.02401EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2016/03/21 12:0 a.m.33 views

moodle -- multiple vulnerabilities

Marina Glancy reports: MSA-16-0003: Incorrect capability check when displaying users emails in Participants list MSA-16-0004: XSS from profile fields from external db MSA-16-0005: Reflected XSS in moddata advanced search MSA-16-0006: Hidden courses are shown to students in Event Monitor...

8.8CVSS1.7AI score0.01931EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/02/22 12:0 a.m.33 views

websvn -- reflected cross-site scripting

Sebastien Delafond reports: Jakub Palaczynski discovered that websvn, a web viewer for Subversion repositories, does not correctly sanitize user-supplied input, which allows a remote user to run reflected cross-site scripting attacks...

6.1CVSS3.8AI score0.01711EPSS
Exploits4References2
FreeBSD
FreeBSD
added 2016/02/08 12:0 a.m.33 views

PostgreSQL -- Security Fixes for Regular Expressions, PL/Java.

PostgreSQL project reports: Security Fixes for Regular Expressions, PL/Java CVE-2016-0773: This release closes security hole CVE-2016-0773, an issue with regular expression regex parsing. Prior code allowed users to pass in expressions which included out-of-range Unicode characters, triggering a...

9CVSS7.9AI score0.06948EPSS
Exploits0
FreeBSD
FreeBSD
added 2016/02/02 12:0 a.m.33 views

wordpress -- multiple vulnerabilities

Samuel Sidler reports: WordPress 4.4.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.4.1 and earlier are affected by two security issues: a possible SSRF for certain local URIs, reported ...

3.1AI score
Exploits0References2
FreeBSD
FreeBSD
added 2016/01/28 12:0 a.m.33 views

phpmyadmin -- XSS vulnerability in SQL editor

The phpMyAdmin development team reports: With a crafted SQL query, it is possible to trigger an XSS attack in the SQL editor. We consider this vulnerability to be non-critical. This vulnerability can be triggered only by someone who is logged in to phpMyAdmin, as the usual token protection preven...

5.4CVSS3.3AI score0.01531EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/13 12:0 a.m.33 views

ffmpeg -- remote attacker can access local files

Arch Linux reports: ffmpeg has a vulnerability in the current version that allows the attacker to create a specially crafted video file, downloading which will send files from a user PC to a remote attacker server. The attack does not even require the user to open that file — for example, KDE...

5AI score
Exploits0References1
FreeBSD
FreeBSD
added 2015/12/28 12:0 a.m.33 views

webkit -- UI spoof

webkit reports: The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame...

5CVSS6.2AI score0.01525EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/12/08 12:0 a.m.33 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 7 security fixes in this release, including: 548273 High CVE-2015-6788: Type confusion in extensions. Credit to anonymous. 557981 High CVE-2015-6789: Use-after-free in Blink. Credit to cloudfuzzer. 542054 Medium CVE-2015-6790: Escaping issue in saved pages. Credit ...

10CVSS9.4AI score0.03199EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/10/22 12:0 a.m.33 views

Joomla! -- Core - SQL Injection/ACL Violation vulnerabilities

The JSST and the Joomla! Security Center report: 20151001 - Core - SQL Injection Inadequate filtering of request data leads to a SQL Injection vulnerability. 20151002 - Core - ACL Violations Inadequate ACL checks in comcontenthistory provide potential read access to data which should be access...

7.5CVSS6.8AI score0.99967EPSS
Exploits10References3
FreeBSD
FreeBSD
added 2015/09/17 12:0 a.m.33 views

wolfssl -- leakage of private key information

Florian Weimer of Redhat discovered that an optimization in RSA signature validation can result in disclosure of the server's private key under certain fault conditions...

5.9CVSS6.3AI score0.05031EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2015/09/04 12:0 a.m.33 views

qemu -- denial of service vulnerability in e1000 NIC support

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing transmit descriptor data when sending a network packet. A privileged user inside guest could use this flaw to...

3.5CVSS6.1AI score0.00982EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2015/06/25 12:0 a.m.33 views

ansible -- multiple vulnerabilities

Ansible, Inc. reports: Ensure that hostnames match certificate names when using HTTPS - resolved in Ansible 1.9.2 Improper symlink handling in zone, jail, and chroot connection plugins could lead to escape from confined environment - resolved in Ansible 1.9.2...

4.3CVSS7.4AI score0.00933EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2015/05/19 12:0 a.m.33 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 37 security fixes in this release, including: 474029 High CVE-2015-1252: Sandbox escape in Chrome. Credit to anonymous. 464552 High CVE-2015-1253: Cross-origin bypass in DOM. Credit to anonymous. 444927 High CVE-2015-1254: Cross-origin bypass in Editing. Credit to...

7.5CVSS9.5AI score0.07855EPSS
Exploits4References1
FreeBSD
FreeBSD
added 2015/04/23 12:0 a.m.33 views

Quassel IRC -- SQL injection vulnerability

Quassel IRC developers report: Restarting a PostgreSQL database while Quassel Core is running would not properly re-initialize the database session inside Quassel, bringing back an old security issue CVE-2013-4422...

6.8CVSS6.4AI score0.0211EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/04/12 12:0 a.m.33 views

qt4-imageformats, qt4-gui, qt5-gui -- Multiple Vulnerabilities in Qt Image Format Handling

Richard J. Moore reports: Due to two recent vulnerabilities identified in the built-in image format handling code, it was decided that this area required further testing to determine if further issues remained. Fuzzing using afl-fuzz located a number of issues in the handling of BMP, ICO and GIF...

9AI score
Exploits0References1
FreeBSD
FreeBSD
added 2015/03/16 12:0 a.m.33 views

osc -- shell command injection via crafted _service files

SUSE Security Update reports: osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell metacharacters in a service file...

7.5CVSS6.7AI score0.03608EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2015/02/18 12:0 a.m.33 views

bind -- denial of service vulnerability

ISC reports: When configured to perform DNSSEC validation, named can crash when encountering a rare set of conditions in the managed trust anchors...

5.4CVSS8.5AI score0.22168EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/12/10 12:0 a.m.33 views

FreeBSD -- Buffer overflow in stdio

Problem Description: A programming error in the standard I/O library's sflush function could erroneously adjust the buffered stream's internal state even when no write actually occurred in the case when write2 system call returns an error. Impact: The accounting mismatch would accumulate, if the...

6.9CVSS6.7AI score0.00488EPSS
Exploits0
FreeBSD
FreeBSD
added 2014/11/20 12:0 a.m.33 views

sox -- input sanitization errors

oCERT reports: The sox command line tool is affected by two heap-based buffer overflows, respectively located in functions startread and AdpcmReadBlock. A specially crafted wav file can be used to trigger the vulnerabilities...

7.5CVSS6.5AI score0.07709EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2014/04/08 12:0 a.m.33 views

FreeBSD -- Deadlock in the NFS server

Problem Description: The kernel holds a lock over the source directory vnode while trying to convert the target directory file handle to a vnode, which needs to be returned with the lock held, too. This order may be in violation of normal lock order, which in conjunction with other threads that...

4CVSS6.1AI score0.02044EPSS
Exploits1
FreeBSD
FreeBSD
added 2014/02/25 12:0 a.m.33 views

apache -- several vulnerabilities

Apache HTTP SERVER PROJECT reports: Clean up cookie logging with fewer redundant string parsing passes. Log only cookies with a value assignment. Prevents segfaults when logging truncated cookies. moddav: Keep track of length of cdata properly when removing leading spaces. Eliminates a potential...

7.5AI score
Exploits0
FreeBSD
FreeBSD
added 2013/11/14 12:0 a.m.33 views

chromium -- multiple memory corruption issues

Google Chrome Releases reports: 319117 319125 Critical CVE-2013-6632: Multiple memory corruption issues. Credit to Pinkie Pie...

9.3CVSS1.9AI score0.0609EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/09/15 12:0 a.m.33 views

django -- denial-of-service via large passwords

The Django project reports: These releases address a denial-of-service attack against Django's authentication framework. All users of Django are encouraged to upgrade immediately...

5CVSS6.6AI score0.02661EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2013/07/06 12:0 a.m.33 views

FreeBSD -- Incorrect privilege validation in the NFS server

Problem Description: The kernel incorrectly uses client supplied credentials instead of the one configured in exports5 when filling out the anonymous credential for a NFS export, when -network or -host restrictions are used at the same time. Impact: The remote client may supply privileged...

6.4CVSS6.3AI score0.02137EPSS
Exploits1
FreeBSD
FreeBSD
added 2013/06/05 12:0 a.m.33 views

phpMyAdmin -- XSS due to unescaped HTML output in Create View page

The phpMyAdmin development team reports: When creating a view with a crafted name and an incorrect CREATE statement, it is possible to trigger an XSS. This vulnerability can be triggered only by someone who logged in to phpMyAdmin, as the usual token protection prevents non-logged-in users from...

3.5CVSS6.2AI score0.01149EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/05/23 12:0 a.m.33 views

xorg -- protocol handling issues in X Window System client libraries

freedesktop.org reports: Ilja van Sprundel, a security researcher with IOActive, has discovered a large number of issues in the way various X client libraries handle the responses they receive from servers, and has worked with X.Org's security team to analyze, confirm, and fix these issues. Most ...

6.8CVSS7AI score0.03082EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/05/08 12:0 a.m.33 views

dropbear -- exposure of sensitive information, DoS

The Dropbear project reports: A weakness and a vulnerability have been reported in Dropbear SSH Server, which can be exploited by malicious people to disclose certain sensitive information and cause a DoS...

6.3AI score
Exploits0References1
FreeBSD
FreeBSD
added 2013/04/02 12:0 a.m.33 views

ModSecurity -- XML External Entity Processing Vulnerability

Positive Technologies has reported a vulnerability in ModSecurity, which can be exploited by malicious people to disclose potentially sensitive information or cause a DoS Denial Of Serice. The vulnerability is caused due to an error when parsing external XML entities and can be exploited to e.g...

7.5CVSS6AI score0.04208EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2013/03/27 12:0 a.m.33 views

roundcube -- arbitrary file disclosure vulnerability

RoundCube development team reports: After getting reports about a possible vulnerability of Roundcube which allows an attacker to modify its users preferences in a way that he/she can then read files from the server, we now published updated packages as well as patches that fix this security issu...

5CVSS6.2AI score0.02287EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/02/20 12:0 a.m.34 views

drupal7 -- Denial of service

Drupal Security Team reports: Drupal core's Image module allows for the on-demand generation of image derivatives. This capability can be abused by requesting a large number of new derivatives which can fill up the server disk space, and which can cause a very high CPU load. Either of these effec...

5CVSS6.3AI score0.01848EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/02/19 12:0 a.m.33 views

FreeBSD -- BIND remote DoS with deliberately crafted DNS64 query

Problem description: Due to a software defect a crafted query can cause named8 to crash with an assertion failure...

7.8CVSS8.4AI score0.10896EPSS
Exploits1
FreeBSD
FreeBSD
added 2013/02/08 12:0 a.m.33 views

Ruby Rack Gem -- Multiple Issues

Rack developers report: Today we are proud to announce the release of Rack 1.4.5. Fix CVE-2013-0263, timing attack against Rack::Session::Cookie Fix CVE-2013-0262, symlink path traversal in Rack::File...

5.1CVSS6.4AI score0.05281EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/01/07 12:0 a.m.33 views

ettercap -- buffer overflow in target list parsing

Host target list parsing routine in ettercap 0.7.4-series prior to 0.7.4.1 and 0.7.5-series is prone to the stack-based buffer overflow that may lead to the code execution with the privileges of the ettercap process. In order to trigger this vulnerability, user or service that use ettercap should...

4.4CVSS8.8AI score0.0084EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2012/11/29 12:0 a.m.33 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 161564 High CVE-2012-5138: Incorrect file path handling. Credit to Google Chrome Security Team Jüri Aedla. 162835 High CVE-2012-5137: Use-after-free in media source handling. Credit to Pinkie Pie...

10CVSS1.3AI score0.02507EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2012/11/05 12:0 a.m.33 views

tomcat -- authentication weaknesses

The Apache Software Foundation reports: Three weaknesses in Tomcat's implementation of DIGEST authentication were identified and resolved: Tomcat tracked client rather than server nonces and nonce count. When a session ID was present, authentication was bypassed. The user name and password were n...

3AI score
Exploits1References4
FreeBSD
FreeBSD
added 2012/11/05 12:0 a.m.33 views

tomcat -- Denial of Service

The Apache Software Foundation reports: The checks that limited the permitted size of request headers were implemented too late in the request parsing process for the HTTP NIO connector. This enabled a malicious user to trigger an OutOfMemoryError by sending a single request with very large...

5CVSS9AI score0.08742EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2012/10/16 12:0 a.m.33 views

otrs -- XSS vulnerability

OTRS Security Advisory reports: This advisory covers vulnerabilities discovered in the OTRS core system. This is a variance of the XSS vulnerability, where an attacker could send a specially prepared HTML email to OTRS which would cause JavaScript code to be executed in your browser while...

4.3CVSS8.3AI score0.05792EPSS
Exploits2References2
Total number of security vulnerabilities5000