Lucene search
K
FreebsdMost viewed

6583 matches found

FreeBSD
FreeBSD
added 2018/12/13 12:0 a.m.23 views

wordpress -- multiple issues

wordpress developers reports: WordPress versions 5.0 and earlier are affected by the following bugs, which are fixed in version 5.0.1. Updated versions of WordPress 4.9 and older releases are also available, for users who have not yet updated to 5.0. Karim El Ouerghemmi discovered that authors...

1.7AI score
Exploits0References1
FreeBSD
FreeBSD
added 2018/12/11 12:0 a.m.23 views

typo3 -- multiple vulnerabilities

Typo3 core team reports: CKEditor 4.11 fixes an XSS vulnerability in the HTML parser reported by maxarr. The vulnerability stemmed from the fact that it was possible to execute XSS inside the CKEditor source area after persuading the victim to: i switch CKEditor to source mode, then ii paste a...

5.3AI score
Exploits0References1
FreeBSD
FreeBSD
added 2018/07/17 12:0 a.m.23 views

py-cryptography -- tag forgery vulnerability

The Python Cryptographic Authority PyCA project reports: finalizewithtag allowed tag truncation by default which can allow tag forgery in some cases. The method now enforces the mintaglength provided to the GCM constructor...

7.5CVSS2.7AI score0.03196EPSS
Exploits0
FreeBSD
FreeBSD
added 2017/11/30 12:0 a.m.23 views

transmission-daemon -- vulnerable to dns rebinding attacks

Google Project Zero reports: The transmission bittorrent client uses a client/server architecture, the user interface is the client which communicates to the worker daemon using JSON RPC requests. As with all HTTP RPC schemes like this, any website can send requests to the daemon listening on...

6.9AI score
Exploits0References2
FreeBSD
FreeBSD
added 2017/11/15 12:0 a.m.23 views

FreeBSD -- Information leak in kldstat(2)

Problem Description: The kernel does not properly clear the memory of the kldfilestat structure before filling the data. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of information from the kernel stack is possible. Impact: Some bytes...

3.3CVSS4.9AI score0.00386EPSS
Exploits0
FreeBSD
FreeBSD
added 2017/11/08 12:0 a.m.23 views

frr -- BGP Mishandled attribute length on Error

FRR reports: BGP Mishandled attribute length on Error A vulnerability exists in the BGP daemon of FRR where a malformed BGP UPDATE packet can leak information from the BGP daemon and cause a denial of service by crashing the daemon...

7.5CVSS7.2AI score0.02494EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2017/10/16 12:0 a.m.23 views

FreeBSD -- WPA2 protocol vulnerability

Problem Description: A vulnerability was found in how a number of implementations can be triggered to reconfigure WPA/WPA2/RSN keys TK, GTK, or IGTK by replaying a specific frame that is used to manage the keys. Impact: Such reinstallation of the encryption key can result in two different types o...

6.3AI score
Exploits0
FreeBSD
FreeBSD
added 2017/08/15 12:0 a.m.23 views

kanboard -- multiple privilege escalation vulnerabilities

chbi reports: an authenticated standard user could reset the password of another user including admin by altering form data...

8.6AI score
Exploits0References1
FreeBSD
FreeBSD
added 2017/04/13 12:0 a.m.23 views

osip -- Improper Restriction of Operations within the Bounds of a Memory Buffer

osip developers reports: In libosip2 in GNU oSIP 4.1.0 and 5.0.0, a malformed SIP message can lead to a heap buffer overflow in the msgosipbodyparse function defined in osipparser2/osipmessageparse.c, resulting in a remote DoS...

7.5CVSS2.7AI score0.02462EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2017/03/16 12:0 a.m.23 views

chicken -- multiple vulnerabilities

CHICKEN reports: CVE-2017-6949: Unchecked malloc call in SRFI-4 constructors when allocating in non-GC memory, resulting in potential 1-word buffer overrun and/or segfault CVE-2017-9334: "length" crashes on improper lists CVE-2017-11343: The randomization factor of the symbol table was set before...

8.1CVSS3.9AI score0.01537EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/10/15 12:0 a.m.23 views

potrace -- multiple memory failure

potrace reports: CVE-2016-8685: invalid memory access in findnext CVE-2016-8686: memory allocation failure...

7.8CVSS2.7AI score0.01514EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/09/21 12:0 a.m.23 views

irssi -- heap corruption and missing boundary checks

Irssi reports: Remote crash and heap corruption. Remote code execution seems difficult since only Nuls are written...

3.9AI score
Exploits0References1
FreeBSD
FreeBSD
added 2016/07/20 12:0 a.m.23 views

krb5 -- KDC denial of service vulnerability

Major changes in krb5 1.14.3 and krb5 1.13.6: Fix a rare KDC denial of service vulnerability when anonymous client principals are restricted to obtaining TGTs only CVE-2016-3120...

6.5CVSS2.3AI score0.0462EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/07/20 12:0 a.m.23 views

libidn -- multiple vulnerabilities

Simon Josefsson reports: libidn: Fix out-of-bounds stack read in idnatoascii4i. idn: Solve out-of-bounds-read when reading one zero byte as input. Also replaced fgets with getline. libidn: stringpreputf8nfkcnormalize reject invalid UTF-8. It was always documented to only accept UTF-8 data, but no...

7.5CVSS7.6AI score0.06721EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2016/02/25 12:0 a.m.23 views

xerces-c3 -- Parser Crashes on Malformed Input

The Apache Software Foundation reports: The Xerces-C XML parser mishandles certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a parse operation. The bugs...

9.8CVSS9.6AI score0.09115EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/02/17 12:0 a.m.23 views

libotr -- integer overflow

X41 D-Sec reports: A remote attacker may crash or execute arbitrary code in libotr by sending large OTR messages...

9.8CVSS4.9AI score0.254EPSS
Exploits5References1
FreeBSD
FreeBSD
added 2016/02/15 12:0 a.m.23 views

ricochet -- information disclosure

special reports: By sending a nickname with some HTML tags in a contact request, an attacker could cause Ricochet to make network requests without Tor after the request is accepted, which would reveal the user's IP address...

0.3AI score
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/28 12:0 a.m.23 views

phpmyadmin -- Unsafe comparison of XSRF/CSRF token

The phpMyAdmin development team reports: The comparison of the XSRF/CSRF token parameter with the value saved in the session is vulnerable to timing attacks. Moreover, the comparison could be bypassed if the XSRF/CSRF token matches a particular pattern. We consider this vulnerability to be seriou...

7.5CVSS2.1AI score0.02648EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/20 12:0 a.m.23 views

xen-kernel -- PV superpage functionality missing sanity checks

The Xen Project reports: The PV superpage functionality lacks certain validity checks on data being passed to the hypervisor by guests. This is the case for the page identifier MFN passed to MMUEXTMARKSUPER and MMUEXTUNMARKSUPER sub-ops of the HYPERVISORmmuextop hypercall as well as for various...

8.5CVSS1.2AI score0.01153EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/14 12:0 a.m.23 views

cgit -- multiple vulnerabilities

Jason A. Donenfeld reports: Reflected Cross Site Scripting and Header Injection in Mimetype Query String. Stored Cross Site Scripting and Header Injection in Filename Parameter. Integer Overflow resulting in Buffer Overflow...

9.8CVSS1.6AI score0.03791EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2016/01/14 12:0 a.m.23 views

FreeBSD -- Insecure default snmpd.config permissions

Problem Description: The SNMP protocol supports an authentication model called USM, which relies on a shared secret. The default permission of the snmpd configuration file, /etc/snmpd.config, is weak and does not provide adequate protection against local unprivileged users. Impact: A local user m...

5.5CVSS5.7AI score0.00497EPSS
Exploits2
FreeBSD
FreeBSD
added 2015/12/12 12:0 a.m.23 views

cups-filters -- code execution

Till Kamppeter reports: Cups Filters/Foomatic Filters does not consider semicolon as an illegal escape character...

7.5CVSS7.5AI score0.05251EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/12/05 12:0 a.m.23 views

redmine -- information leak vulnerability

Redmine reports: Data disclosure in atom feed...

5.3CVSS5.8AI score0.01931EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/12/01 12:0 a.m.23 views

py-amf -- input sanitization errors

oCERT reports: A specially crafted AMF payload, containing malicious references to XML external entities, can be used to trigger Denial of Service DoS conditions or arbitrarily return the contents of files that are accessible with the running application privileges...

7.1CVSS6.8AI score0.01378EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/11/26 12:0 a.m.23 views

dpkg -- stack-based buffer overflow

Salvatore Bonaccorso reports: Hanno Boeck discovered a stack-based buffer overflow in the dpkg-deb component of dpkg, the Debian package management system. This flaw could potentially lead to arbitrary code execution if a user or an automated system were tricked into processing a specially crafte...

7.5CVSS7.5AI score0.05035EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2015/11/03 12:0 a.m.23 views

powerdns -- Denial of Service

PowerDNS reports: A bug was found using afl-fuzz in our packet parsing code. This bug, when exploited, causes an assertion error and consequent termination of the the pdnsserver process, causing a Denial of Service...

5CVSS6.4AI score0.67456EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/10/24 12:0 a.m.23 views

xscreensaver - lock bypass

RedHat bugzilla reports: In dual screen configurations, unplugging one screen will cause xscreensaver to crash, leaving the screen unlocked...

2.1CVSS6.5AI score0.00508EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2015/10/22 12:0 a.m.23 views

Joomla! -- Core - ACL Violation vulnerabilities

The JSST and the Joomla! Security Center report: 20151003 - Core - ACL Violations Inadequate ACL checks in comcontent provide potential read access to data which should be access restricted...

5CVSS6.4AI score0.01955EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2015/07/27 12:0 a.m.23 views

remind -- buffer overflow with malicious reminder file input

Dianne Skoll reports: BUG FIX: Fix a buffer overflow found by Alexander Keller. The bug can be manifested by an extended DUMP command using a system variable that is a special variable whose name begins with '$'...

10CVSS7AI score0.02595EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2015/06/30 12:0 a.m.23 views

Joomla! -- Core - CSRF Protection vulnerabilities

The JSST and the Joomla! Security Center report: 20150602 - Core - CSRF Protection Lack of CSRF checks potentially enabled uploading malicious code...

6.8CVSS6.5AI score0.01353EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2015/06/17 12:0 a.m.23 views

drupal -- multiple vulnerabilities

Drupal development team reports: Impersonation OpenID module - Drupal 6 and 7 - Critical A vulnerability was found in the OpenID module that allows a malicious user to log in as other users on the site, including administrators, and hijack their accounts. This vulnerability is mitigated by the fa...

4CVSS6.3AI score0.01714EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/04/16 12:0 a.m.23 views

inspircd -- DoS

Inspircd reports: This release fixes the issues discovered since 2.0.18, containing multiple important stability and correctness related improvements, including a fix for a bug which allowed malformed DNS records to cause netsplits on a network...

8.6CVSS8.6AI score0.02282EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2015/03/24 12:0 a.m.23 views

freexl -- multiple vulnerabilities

Jodie Cunningham reports: 1: A flaw was found in the way FreeXL reads sectors from the input file. A specially crafted file could possibly result in stack corruption near freexl.c:3752. 2: A flaw was found in the function allocatecells. A specially crafted file with invalid workbook dimensions...

4.3CVSS6.7AI score0.02375EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/03/17 12:0 a.m.23 views

libXfont -- BDF parsing issues

Alan Coopersmith reports: Ilja van Sprundel, a security researcher with IOActive, has discovered an issue in the parsing of BDF font files by libXfont. Additional testing by Alan Coopersmith and William Robinet with the American Fuzzy Lop afl tool uncovered two more issues in the parsing of BDF...

8.5CVSS5.3AI score0.04923EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/01/06 12:0 a.m.23 views

asterisk -- File descriptor leak when incompatible codecs are offered

The Asterisk project reports: Asterisk may be configured to only allow specific audio or video codecs to be used when communicating with a particular endpoint. When an endpoint sends an SDP offer that only lists codecs not allowed by Asterisk, the offer is rejected. However, in this case, RTP por...

3.5CVSS6.4AI score0.0303EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/07/23 12:0 a.m.23 views

trafficserver -- unspecified vulnerability

Bryan Call reports: Below is our announcement for the security issue reported to us from Yahoo! Japan. All versions of Apache Traffic Server are vulnerable. We urge users to upgrade to either 4.2.1.1 or 5.0.1 immediately. This fixes CVE-2014-3525 and limits access to how the health checks are...

10CVSS6.4AI score0.04546EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/06/30 12:0 a.m.23 views

qemu -- denial of service vulnerability in VNC

Prasad J Pandit, Red Hat Product Security Team, reports: Qemu emulator built with the VNC display driver is vulnerable to an infinite loop issue. It could occur while processing a CLIENTCUTTEXT message with specially crafted payload message. A privileged guest user could use this flaw to crash th...

6.5CVSS6.9AI score0.0361EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2014/04/15 12:0 a.m.23 views

pivotx -- cross-site scripting (XSS) vulnerability

pivotx reports: cross-site scripting XSS vulnerability in the nickname and possibly the email field. Mitigated by the fact that an attacker must have a PivotX account...

3.5CVSS5.9AI score0.01909EPSS
Exploits2
FreeBSD
FreeBSD
added 2014/03/04 12:0 a.m.23 views

nginx -- SPDY memory corruption

The nginx project reports: A bug in the experimental SPDY implementation in nginx 1.5.10 was found, which might allow an attacker to corrupt worker process memory by using a specially crafted request, potentially resulting in arbitrary code execution CVE-2014-0088. The problem only affects nginx...

7.5CVSS6.6AI score0.08663EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2014/01/14 12:0 a.m.23 views

FreeBSD -- bsnmpd remote denial of service vulnerability

Problem Description: The bsnmpd8 daemon is prone to a stack-based buffer-overflow when it has received a specifically crafted GETBULK PDU request. Impact: This issue could be exploited to execute arbitrary code in the context of the service daemon, or crash the service daemon, causing a...

5.8CVSS7.2AI score0.01894EPSS
Exploits1
FreeBSD
FreeBSD
added 2014/01/10 12:0 a.m.23 views

subversion -- mod_dav_svn vulnerability

Subversion Project reports: Subversion's moddavsvn Apache HTTPD server module will crash when it receives an OPTIONS request against the server root and Subversion is configured to handle the server root and SVNListParentPath is on. This can lead to a DoS. There are no known instances of this...

4.3CVSS8.5AI score0.11052EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2013/10/07 12:0 a.m.23 views

Quassel IRC -- SQL injection vulnerability

Quassel IRC developers report: SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote attackers to execute arbitrary SQL commands via a \ backslash in a message...

6.8CVSS8AI score0.0211EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/08/22 12:0 a.m.23 views

FreeBSD -- Kernel memory disclosure in sctp(4)

Problem Description: When initializing the SCTP state cookie being sent in INIT-ACK chunks, a buffer allocated from the kernel stack is not completely initialized. Impact: Fragments of kernel memory may be included in SCTP packets and transmitted over the network. For each SCTP session, there are...

7.8CVSS8.8AI score0.02511EPSS
Exploits0
FreeBSD
FreeBSD
added 2013/03/07 12:0 a.m.23 views

mozilla -- use-after-free in HTML Editor

The Mozilla Project reports: MFSA 2013-29 Use-after-free in HTML Editor...

9.3CVSS6.6AI score0.06398EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2013/02/15 12:0 a.m.23 views

dbus-glib -- privledge escalation

Sebastian Krahmer reports: A privilege escalation flaw was found in the way dbus-glib, the D-Bus add-on library to integrate the standard D-Bus library with the GLib thread abstraction and main loop, performed filtering of the message sender message source subject, when the NameOwnerChanged signa...

7.2CVSS6.5AI score0.0109EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2013/01/26 12:0 a.m.23 views

tinc -- Buffer overflow

tinc-vpn.org reports: Drop packets forwarded via TCP if they are too big...

6.5CVSS6.5AI score0.60679EPSS
Exploits4
FreeBSD
FreeBSD
added 2012/10/24 12:0 a.m.23 views

DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey message trust

US-CERT reports: DomainKeys Identified Mail DKIM Verifiers may inappropriately convey message trust when messages are signed using test or small bit signing keys...

4AI score
Exploits0
FreeBSD
FreeBSD
added 2012/08/30 12:0 a.m.23 views

asterisk -- multiple vulnerabilities

Asterisk project reports: Asterisk Manager User Unauthorized Shell Access ACL rules ignored when placing outbound calls by certain IAX2 users...

6.5AI score
Exploits0References3
FreeBSD
FreeBSD
added 2012/07/09 12:0 a.m.23 views

automake -- Insecure 'distcheck' recipe granted world-writable distdir

GNU reports: The recipe of the 'distcheck' target granted temporary world-write permissions on the extracted distdir. This introduced a locally exploitable race condition for those who run "make distcheck" with a non-restrictive umask e.g., 022 in a directory that was accessible by others. A...

4.4CVSS7.1AI score0.00474EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2012/04/29 12:0 a.m.23 views

joomla -- Privilege Escalation

Joomla! reported a Core Privilege Escalation:: Inadequate checking leads to possible user privilege escalation...

3.2AI score
Exploits0References1
Total number of security vulnerabilities5000