Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
added 2016/01/27 12:0 a.m.30 views

prosody -- user impersonation vulnerability

The Prosody team reports: Adopt key generation algorithm from XEP-0185, to prevent impersonation attacks CVE-2016-0756...

5.3CVSS5.9AI score0.02055EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/27 12:0 a.m.30 views

FreeBSD -- Linux compatibility layer issetugid(2) system call

Problem Description: A programming error in the Linux compatibility layer could cause the issetugid2 system call to return incorrect information. Impact: If an application relies on output of the issetugid2 system call and that information is incorrect, this could lead to a privilege escalation...

7.8CVSS2.6AI score0.0038EPSS
Exploits0
FreeBSD
FreeBSD
added 2016/01/26 12:0 a.m.30 views

NSS -- multiple vulnerabilities

Mozilla Foundation reports: Security researcher Hanno Böck reported that calculations with mpdiv and mpexptmod in Network Security Services NSS can produce wrong results in some circumstances. These functions are used within NSS for a variety of cryptographic division functions, leading to...

0.5AI score
Exploits0References4
FreeBSD
FreeBSD
added 2016/01/22 12:0 a.m.30 views

privoxy -- multiple vulnerabilities

Privoxy Developers reports: Prevent invalid reads in case of corrupt chunk-encoded content. CVE-2016-1982. Bug discovered with afl-fuzz and AddressSanitizer. Remove empty Host headers in client requests. Previously they would result in invalid reads. CVE-2016-1983. Bug discovered with afl-fuzz an...

7.5CVSS1.8AI score0.02867EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2016/01/11 12:0 a.m.30 views

p5-PathTools -- File::Spec::canonpath loses taint

Ricardo Signes reports: Beginning in PathTools 3.47 and/or perl 5.20.0, the File::Spec::canonpath routine returned untained strings even if passed tainted input. This defect undermines the guarantee of taint propagation, which is sometimes used to ensure that unvalidated user input does not reach...

7.5CVSS7.2AI score0.03124EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/06 12:0 a.m.30 views

wordpress -- XSS vulnerability

Aaron Jorbin reports: WordPress 4.4.1 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.4 and earlier are affected by a cross-site scripting vulnerability that could allow a site to be...

6.1CVSS3.1AI score0.02694EPSS
Exploits2References2
FreeBSD
FreeBSD
added 2015/12/08 12:0 a.m.30 views

xen-tools -- libxl leak of pv kernel and initrd on error

The Xen Project reports: When constructing a guest which is configured to use a PV bootloader which runs as a userspace process in the toolstack domain e.g. pygrub libxl creates a mapping of the files to be used as kernel and initial ramdisk when building the guest domain. However if building the...

7.8CVSS8.3AI score0.02043EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/11/24 12:0 a.m.30 views

bind -- multiple vulnerabilities

ISC reports: Named is potentially vulnerable to the OpenSSL vulnerability described in CVE-2015-3193. Incorrect reference counting could result in an INSIST failure if a socket error occurred while performing a lookup. This flaw is disclosed in CVE-2015-8461. RT40945 Insufficient testing when...

7.5CVSS7.1AI score0.5469EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2015/11/17 12:0 a.m.30 views

piwik -- multiple vulnerabilities

Piwik changelog reports: This release is rated critical. We are grateful for Security researchers who disclosed security issues privately to the Piwik Security Response team: Elamaran Venkatraman, Egidio Romano and Dmitriy Shcherbatov. The following vulnerabilities were fixed: XSS, CSRF, possible...

7.5CVSS7.1AI score0.03931EPSS
Exploits6References1
FreeBSD
FreeBSD
added 2015/10/29 12:0 a.m.30 views

xen-kernel -- leak of per-domain profiling-related vcpu pointer array

The Xen Project reports: A domain's xenoprofile state contains an array of per-vcpu information... This array is leaked on domain teardown. This memory leak could -- over time -- exhaust the host's memory. The following parties can mount a denial of service attack affecting the whole system: A...

4.9CVSS7.5AI score0.00436EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/10/29 12:0 a.m.30 views

xen-tools -- populate-on-demand balloon size inaccuracy can crash guests

The Xen Project reports: Guests configured with PoD might be unstable, especially under load. In an affected guest, an unprivileged guest user might be able to cause a guest crash, perhaps simply by applying load so as to cause heavy memory pressure within the guest...

2.1CVSS7.4AI score0.00426EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/10/28 12:0 a.m.30 views

openafs -- information disclosure

The OpenAFS development team reports: When constructing an Rx acknowledgment ACK packet, Andrew-derived Rx implementations do not initialize three octets of data that are padding in the C language structure and were inadvertently included in the wire protocol CVE-2015-7762. Additionally, OpenAFS ...

5CVSS6.4AI score0.02133EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/09/24 12:0 a.m.30 views

git -- potential code execution

Debian reports: "int" is the wrong data type for ... nlen assignment...

10CVSS3.6AI score0.17979EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2015/09/10 12:0 a.m.30 views

Bugzilla security issues

Bugzilla Security Advisory Login names usually an email address longer than 127 characters are silently truncated in MySQL which could cause the domain name of the email address to be corrupted. An attacker could use this vulnerability to create an account with an email address different from the...

7.5CVSS5.2AI score0.03371EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2015/09/01 12:0 a.m.30 views

devel/ipython -- multiple vulnerabilities

Matthias Bussonnier reports: Summary: Local folder name was used in HTML templates without escaping, allowing XSS in said pages by carefully crafting folder name and URL to access it. URI with issues: GET /tree/ Benjamin RK reports: Vulnerability: A maliciously forged file opened for editing can...

6AI score
Exploits0References4
FreeBSD
FreeBSD
added 2015/08/17 12:0 a.m.30 views

jasper -- multiple vulnerabilities

Martin Prpic reports: A double free flaw was found in the way JasPer's jasperimagestopload function parsed certain JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash. Feist Josselin reports: A new use-after-free was found in Jasper JPEG-200. The...

6.7AI score
Exploits0References3
FreeBSD
FreeBSD
added 2015/08/06 12:0 a.m.30 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2015-78 Same origin violation and local file stealing via PDF reader...

8.8CVSS7.2AI score0.70226EPSS
Exploits8References1
FreeBSD
FreeBSD
added 2015/08/04 12:0 a.m.30 views

wordpress -- Multiple vulnerability

Gary Pendergast reports: WordPress 4.2.4 fixes three cross-site scripting vulnerabilities and a potential SQL injection that could be used to compromise a site...

7.5CVSS6.8AI score0.10986EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/07/03 12:0 a.m.30 views

node, iojs, and v8 -- denial of service

node reports: This release of Node.js fixes a bug that triggers an out-of-band write in V8's utf-8 decoder. This bug impacts all Buffer to String conversions. This is an important security update as this bug can be used to cause a denial of service attack...

7.5CVSS6.2AI score0.02995EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2015/06/09 12:0 a.m.30 views

elasticsearch -- security fix for shared file-system repositories

Elastic reports: Vulnerability Summary: All Elasticsearch versions from 1.0.0 to 1.5.2 are vulnerable to an attack that uses Elasticsearch to modify files read and executed by certain other applications. Remediation Summary: Users should upgrade to 1.6.0. Alternately, ensure that other applicatio...

7.5CVSS7.4AI score0.0445EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2015/06/04 12:0 a.m.30 views

rubygem-bson -- DoS and possible injection

Phill MV reports: By submitting a specially crafted string to a service relying on the bson rubygem, an attacker may trigger denials of service or even inject data into victim's MongoDB instances...

9.8CVSS9AI score0.04751EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2015/05/30 12:0 a.m.30 views

roundcube -- multiple vulnerabilities

Roundcube reports: We just published updates to both stable versions 1.0 and 1.1 after fixing many minor bugs and adding some security improvements to the 1.1 release branch. Version 1.0.6 comes with cherry-picked fixes from the more recent version to ensure proper long term support especially in...

7.5CVSS6.5AI score0.03767EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2015/04/08 12:0 a.m.30 views

libksba -- local denial of service vulnerabilities

Martin Prpic, Red Hat Product Security Team, reports: Denial of Service due to stack overflow in src/ber-decoder.c. Integer overflow in the BER decoder src/ber-decoder.c. Integer overflow in the DN decoder src/dn.c...

7.5CVSS3.4AI score0.02928EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2015/04/01 12:0 a.m.30 views

cassandra -- remote execution of arbitrary code

Jake Luciani reports: Under its default configuration, Cassandra binds an unauthenticated JMX/RMI interface to all network interfaces. As RMI is an API for the transport and remote execution of serialized Java, anyone with access to this interface can execute arbitrary code as the running user...

7.5CVSS7.7AI score0.06692EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/03/31 12:0 a.m.30 views

xen-kernel and xen-tools -- Long latency MMIO mapping operations are not preemptible

The Xen Project reports: The XENDOMCTLmemorymapping hypercall allows long running operations without implementing preemption. This hypercall is used by the device model as part of the emulation associated with configuration of PCI devices passed through to HVM guests and is therefore indirectly...

4.9CVSS6.6AI score0.00453EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/01/05 12:0 a.m.30 views

libevent -- integer overflow in evbuffers

Debian Security Team reports: Andrew Bartlett of Catalyst reported a defect affecting certain applications using the Libevent evbuffer API. This defect leaves applications which pass insanely large inputs to evbuffers open to a possible heap overflow or infinite loop. In order to exploit this fla...

7.5CVSS6.8AI score0.02084EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/12/16 12:0 a.m.30 views

otrs -- Incomplete Access Control

The OTRS project reports: An attacker with valid OTRS credentials could access and manipulate ticket data of other users via the GenericInterface, if a ticket webservice is configured and not additionally secured...

6CVSS6.4AI score0.01778EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/12/03 12:0 a.m.30 views

unzip -- input sanitization errors

oCERT reports: The UnZip tool is an open source extraction utility for archives compressed in the zip format. The unzip command line tool is affected by heap-based buffer overflows within the CRC32 verification, the testcompreb and the getZip64Data functions. The input errors may result in...

7.8CVSS8.2AI score0.07448EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2014/11/04 12:0 a.m.30 views

FreeBSD -- Remote command execution in ftp(1)

Problem Description: A malicious HTTP server could cause ftp1 to execute arbitrary commands. Impact: When operating on HTTP URIs, the ftp1 client follows HTTP redirects, and uses the part of the path after the last '/' from the last resource it accesses as the output filename if '-o' is not...

7.5CVSS5.5AI score0.69115EPSS
Exploits8
FreeBSD
FreeBSD
added 2014/10/21 12:0 a.m.30 views

FreeBSD -- memory leak in sandboxed namei lookup

Problem Description: The namei facility will leak a small amount of kernel memory every time a sandboxed process looks up a nonexistent path name. Impact: A remote attacker that can cause a sandboxed process for instance, a web server to look up a large number of nonexistent path names can cause...

5CVSS6.3AI score0.0157EPSS
Exploits0
FreeBSD
FreeBSD
added 2014/09/24 12:0 a.m.30 views

chromium -- RSA signature malleability in NSS

Google Chrome Releases reports: 414124 RSA signature malleability in NSS CVE-2014-1568. Thanks to Antoine Delignat-Lavaud of Prosecco/INRIA, Brian Smith and Advanced Threat Research team at Intel Security...

7.5CVSS3.2AI score0.1617EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/08/20 12:0 a.m.30 views

django -- multiple vulnerabilities

The Django project reports: These releases address an issue with reverse generating external URLs; a denial of service involving file uploads; a potential session hijacking issue in the remote-user middleware; and a data leak in the administrative interface. We encourage all users of Django to...

6CVSS6.2AI score0.02449EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2014/07/31 12:0 a.m.30 views

samba -- remote code execution

Samba developers report: A malicious browser can send packets that may overwrite the heap of the target nmbd NetBIOS name services daemon. It may be possible to use this to generate a remote code execution vulnerability as the superuser root...

7.9CVSS7.2AI score0.56378EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/02/04 12:0 a.m.30 views

phpmyfaq -- multiple vulnerabilities

The phpMyFAQ team reports: An arbitrary script may be executed on the user's Internet Explorer when using an older version of the browser. If a user views a malicious page while logged in, settings may be changed unintentionally...

6.5AI score
Exploits0References1
FreeBSD
FreeBSD
added 2014/01/27 12:0 a.m.30 views

rt42 -- denial-of-service attack via the email gateway

The RT development team reports: Versions of RT between 4.2.0 and 4.2.2 inclusive are vulnerable to a denial-of-service attack via the email gateway; any installation which accepts mail from untrusted sources is vulnerable, regardless of the permissions configuration inside RT. This vulnerability...

5CVSS6.3AI score0.02427EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/10/25 12:0 a.m.30 views

gnutls -- denial of service

Salvatore Bonaccorso reports: This vulnerability affects the DANE library of gnutls 3.1.x and gnutls 3.2.x. A server that returns more 4 DANE entries could corrupt the memory of a requesting client...

5CVSS6.4AI score0.01978EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/10/17 12:0 a.m.30 views

pycrypto -- PRNG reseed race condition

Dwayne Litzenberger reports: In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator PRNG exhibits a race condition that may cause it to generate the same 'random' output in multiple processes that are forked from each other. Depending on the application, this could reveal...

4.3CVSS8.9AI score0.02007EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2013/09/24 12:0 a.m.30 views

ruby-gems -- Algorithmic Complexity Vulnerability

Ruby Gem developers report: The patch for CVE-2013-4363 was insufficiently verified so the combined regular expression for verifying gem version remains vulnerable following CVE-2013-4363. RubyGems validates versions with a regular expression that is vulnerable to denial of service due to...

4.3CVSS6.1AI score0.0169EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/08/22 12:0 a.m.30 views

FreeBSD -- integer overflow in IP_MSFILTER

Problem Description: An integer overflow in computing the size of a temporary buffer can result in a buffer which is too small for the requested operation. Impact: An unprivileged process can read or write pages of memory which belong to the kernel. These may lead to exposure of sensitive...

7.2CVSS6.7AI score0.00412EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/07/19 12:0 a.m.30 views

subversion -- remotely triggerable "Assertion failed" DoS vulnerability or read overflow.

Subversion Project reports: Subversion's moddavsvn Apache HTTPD server module will trigger an assertion on some requests made against a revision root. This can lead to a DoS. If assertions are disabled it will trigger a read overflow which may cause a SEGFAULT or equivalent or undefined behavior...

4CVSS6.5AI score0.04383EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2013/06/27 12:0 a.m.30 views

libzrtpcpp -- multiple security vulnerabilities

Mark Dowd reports: Vulnerability 1. Remote Heap Overflow: If an attacker sends a packet larger than 1024 bytes that gets stored temporarily which occurs many times - such as when sending a ZRTP Hello packet, a heap overflow will occur, leading to potential arbitrary code execution on the vulnerab...

7.5CVSS6.9AI score0.04323EPSS
Exploits1
FreeBSD
FreeBSD
added 2013/06/06 12:0 a.m.30 views

php5 -- Heap based buffer overflow in quoted_printable_encode

The PHP development team reports: A Heap-based buffer overflow flaw was found in the php quotedprintableencode function. A remote attacker could use this flaw to cause php to crash or execute arbirary code with the permission of the user running php...

5CVSS7.1AI score0.06748EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2013/05/27 12:0 a.m.30 views

www/mod_security -- NULL pointer dereference DoS

SecurityFocus reports: When ModSecurity receives a request body with a size bigger than the value set by the "SecRequestBodyInMemoryLimit" and with a "Content-Type" that has no request body processor mapped to it, ModSecurity will systematically crash on every call to "forceRequestBodyVariable"...

5CVSS6.4AI score0.13719EPSS
Exploits4References1
FreeBSD
FreeBSD
added 2013/04/05 12:0 a.m.30 views

Subversion -- multiple vulnerabilities

Subversion team reports: Subversion's moddavsvn Apache HTTPD server module will use excessive amounts of memory when a large number of properties are set or deleted on a node. Subversion's moddavsvn Apache HTTPD server module will crash when a LOCK request is made against activity URLs...

5CVSS6.4AI score0.51442EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/04/02 12:0 a.m.30 views

FreeBSD -- BIND remote denial of service

A flaw in a library used by BIND allows an attacker to deliberately cause excessive memory consumption by the named8 process. This affects both recursive and authoritative servers...

7.8CVSS8.4AI score0.42851EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2013/02/13 12:0 a.m.30 views

libpurple -- multiple vulnerabilities

Pidgin reports: libpurple Fix a crash when receiving UPnP responses with abnormally long values. MXit Fix two bugs where a remote MXit user could possibly specify a local file path to be written to. Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted da...

6.8CVSS6.9AI score0.03121EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2013/01/10 12:0 a.m.30 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 162494 High CVE-2012-5145: Use-after-free in SVG layout. Credit to Atte Kettunen of OUSPG. 165622 High CVE-2012-5146: Same origin policy bypass with malformed URL. Credit to Erling A Ellingsen and Subodh Iyengar, both of Facebook. 165864 High CVE-2012-5147:...

7.5CVSS9.2AI score0.02017EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2012/11/22 12:0 a.m.30 views

FreeBSD -- Multiple Denial of Service vulnerabilities with named(8)

Problem description: The BIND daemon would crash when a query is made on a resource record with RDATA that exceeds 65535 bytes. The BIND daemon would lock up when a query is made on specific combinations of RDATA...

7.8CVSS7.6AI score0.36798EPSS
Exploits0
FreeBSD
FreeBSD
added 2012/10/17 12:0 a.m.30 views

django -- multiple vulnerabilities

The Django Project reports: Host header poisoning Some parts of Django -- independent of end-user-written applications -- make use of full URLs, including domain name, which are generated from the HTTP Host header. Some attacks against this are beyond Django's ability to control, and require the...

6.4CVSS5.9AI score0.03635EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2012/10/09 12:0 a.m.30 views

gitolite -- path traversal vulnerability

Sitaram Chamarty reports: I'm sorry to say there is a potential path traversal vulnerability in v3. Thanks to Stephane Chazelas for finding it and alerting me. Can it affect you? This can only affect you if you are using wild card repos, and at least one of your patterns allows the string "../" t...

4.6CVSS6.5AI score0.02069EPSS
Exploits0References1
Total number of security vulnerabilities5000