Lucene search
K
FreebsdRecent

6579 matches found

FreeBSD
FreeBSD
•added 2024/05/15 12:0 a.m.•26 views

electron29 -- setuid() does not affect libuv's internal io_uring

Electron developers report: This update fixes the following vulnerability: Backported fix for CVE-2024-22017...

7.3CVSS7.2AI score0.00893EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/14 12:0 a.m.•11 views

Arti -- Security issues related to circuit construction

Tor Project reports: When building anonymizing circuits to or from an onion service with 'lite' vanguards the default enabled, the circuit manager code would build the circuits with one hop too few. When 'full' vanguards are enabled, some circuits are supposed to be built with an extra hop to...

6.9AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2024/05/14 12:0 a.m.•27 views

Intel CPUs -- multiple vulnerabilities

Intel reports: Potential security vulnerabilities in some Intel Trust Domain Extensions TDX module software may allow escalation of privilege. Improper input validation in some Intel TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of...

8.2CVSS7.3AI score0.00379EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/13 12:0 a.m.•13 views

dnsdist -- Transfer requests received over DoH can lead to a denial of service

PowerDNS Security Advisory reports: When incoming DNS over HTTPS support is enabled using the nghttp2 provider, and queries are routed to a tcp-only or DNS over TLS backend, an attacker can trigger an assertion failure in DNSdist by sending a request for a zone transfer AXFR or IXFR over DNS over...

7.5CVSS7AI score0.01078EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/13 12:0 a.m.•21 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 1 security fix: 339458194 High CVE-2024-4761: Out of bounds write in V8. Reported by Anonymous on 2024-05-09...

8.8CVSS7AI score0.11007EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/05/09 12:0 a.m.•22 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 1 security fix: 339266700 High CVE-2024-4671: Use after free in Visuals. Reported by Anonymous on 2024-05-07...

9.6CVSS7.6AI score0.08348EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/09 12:0 a.m.•36 views

PostgreSQL server -- Potentially allowing authenicated database users to see data that they shouldn't.

PostgreSQL project reports: A security vulnerability was found in the system views pgstatsext and pgstatsextexprs, potentially allowing authenticated database users to see data they shouldn't. If this is of concern in your installation, run the SQL script...

4.3CVSS7.7AI score0.00722EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/09 12:0 a.m.•26 views

electron29 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-3914. Security: backported fix for CVE-2024-4558...

9.6CVSS7.4AI score0.01344EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2024/05/08 12:0 a.m.•24 views

QtNetworkAuth -- predictable seeding of PRNG in QAbstractOAuth

Andy Shaw reports: The OAuth1 implementation in QtNetworkAuth created nonces using a PRNG that was seeded with a predictable seed. This means that an attacker that can somehow control the time of the first OAuth1 flow of the process has a high chance of predicting the nonce used in said OAuth flo...

9.8CVSS6.6AI score0.0097EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2024/05/08 12:0 a.m.•41 views

Gitlab -- vulnerabilities

Gitlab reports: ReDoS in branch search when using wildcards ReDoS in markdown render pipeline Redos on Discord integrations Redos on Google Chat Integration Denial of Service Attack via Pin Menu DoS by filtering tags and branches via the API MR approval via CSRF in SAML SSO Banned user from group...

8.8CVSS7.3AI score0.33301EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2024/05/08 12:0 a.m.•7 views

tailscale -- Insufficient inbound packet filtering in subnet routers and exit nodes

Tailscale team reports: In Tailscale versions earlier than 1.66.0, exit nodes, subnet routers, and app connectors, could allow inbound connections to other tailnet nodes from their local area network LAN. This vulnerability only affects Linux exit nodes, subnet routers, and app connectors in...

7AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/06 12:0 a.m.•24 views

Jinja2 -- Vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter

[email protected] reports: Jinja is an extensible templating engine. The xmlattr filter in affected versions of Jinja accepts keys containing non-attribute characters. XML/HTML attributes cannot contain spaces, /, , or =, as each would then be interpreted as starting a separate...

6.9AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2024/05/03 12:0 a.m.•29 views

electron29 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-4060. Security: backported fix for CVE-2024-4058...

9CVSS7.4AI score0.08875EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2024/05/02 12:0 a.m.•16 views

qt6-base (core module) -- Invalid pointer in QStringConverter

Andy Shaw reports: QStringConverter has an invalid pointer being passed as a callback which can allow modification of the stack. Qt itself is not vulnerable to remote attack however an application using QStringDecoder either directly or indirectly can be vulnerable. This requires: the attacker be...

7.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/30 12:0 a.m.•27 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 2 security fixes: 335003891 High CVE-2024-4331: Use after free in Picture In Picture. Reported by Zhenghang Xiao @Kipreyyy on 2024-04-16 333508731 High CVE-2024-4368: Use after free in Dawn. Reported by wgslfuzz on 2024-04-09...

9CVSS8AI score0.08875EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2024/04/30 12:0 a.m.•20 views

cyrus-imapd -- unbounded memory allocation

Cyrus IMAP 3.8.3 Release Notes states: Fixed CVE-2024-34055: Cyrus-IMAP through 3.8.2 and 3.10.0-beta2 allow authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command. The IMAP protocol allows for command arguments to be LITERALs of negotiated lengt...

6.5CVSS7.2AI score0.00836EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/29 12:0 a.m.•15 views

hcode -- buffer overflow in mail.c

The openSUSE project reports: The problematic function in question is putSDN in mail.c. The static variable cp is used as an index for a fixed-sized buffer ibuf. There is a range check: if cp = HDRBUFLEN ... but under certain circumstances, cp can be incremented beyond the buffer size, leading to...

6.5CVSS5.7AI score0.00556EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/29 12:0 a.m.•29 views

R -- arbitrary code execution vulnerability

HiddenLayer Research reports: Deserialization of untrusted data can occur in the R statistical programming language, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user's system...

8.8CVSS7.7AI score0.23618EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/25 12:0 a.m.•17 views

go -- net: malformed DNS message can cause infinite loop

The Go project reports: net: malformed DNS message can cause infinite loop A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop...

5.9CVSS6.8AI score0.01001EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/24 12:0 a.m.•14 views

powerdns-recursor -- denial of service

PowerDNS Team reports: PowerDNS Security Advisory 2024-02: if recursive forwarding is configured, crafted responses can lead to a denial of service in Recursor...

7.5CVSS7.2AI score0.00825EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/24 12:0 a.m.•31 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 4 security fixes: 332546345 Critical CVE-2024-4058: Type Confusion in ANGLE. Reported by Toan suto Pham and Bao zx Pham of Qrious Secure on 2024-04-02 333182464 High CVE-2024-4059: Out of bounds read in V8 API. Reported by Eirik on 2024-04-08 33342062...

9CVSS7.9AI score0.08875EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/04/24 12:0 a.m.•37 views

Gitlab -- vulnerabilities

Gitlab reports: GitLab account takeover, under certain conditions, when using Bitbucket as an OAuth provider Path Traversal leads to DoS and Restricted File Read Unauthenticated ReDoS in FileFinder when using wildcard filters in project file search Personal Access Token scopes not honoured by...

8.8CVSS7.2AI score0.25965EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/04/24 12:0 a.m.•41 views

py-social-auth-app-django -- Improper Handling of Case Sensitivity

GitHub Advisory Database: Python Social Auth is a social authentication/registration mechanism. Prior to version 5.4.1, due to default case-insensitive collation in MySQL or MariaDB databases, third-party authentication user IDs are not case-sensitive and could cause different IDs to match. This...

4.9CVSS7.3AI score0.00581EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/23 12:0 a.m.•16 views

py-matrix-synapse -- weakness in auth chain indexing allows DoS

Matrix developers report: Weakness in auth chain indexing allows DoS from remote room members through disk fill and high CPU usage. High severity...

6.5CVSS7.3AI score0.01463EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2024/04/23 12:0 a.m.•39 views

ruby -- Arbitrary memory address read vulnerability with Regex search

sp2ip reports: If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings...

6.6CVSS7.3AI score0.00629EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/21 12:0 a.m.•11 views

exiv2 -- Out-of-bounds read in AsfVideo::streamProperties

Kevin Backhouse reports: An out-of-bounds read was found in Exiv2 version v0.28.2. The vulnerability is in the parser for the ASF video format, which was a new feature in v0.28.0, so Exiv2 versions before v0.28 are not affected. The out-of-bounds read is triggered when Exiv2 is used to read the...

6.5CVSS6.7AI score0.00561EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/17 12:0 a.m.•87 views

jenkins -- Terrapin SSH vulnerability in Jenkins CLI client

Jenkins Security Advisory: Description Medium SECURITY-3386 / CVE-2023-48795 Terrapin SSH vulnerability in Jenkins CLI client...

5.9CVSS7.2AI score0.9378EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2024/04/17 12:0 a.m.•26 views

clamav -- Possible crash in the HTML file parser that could cause a denial-of-service (DoS) condition

Błażej Pawłowski reports: A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An attacker could exploit this...

7.5CVSS7.2AI score0.01101EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/16 12:0 a.m.•28 views

qt5-webengine -- Multiple vulnerabilities

Backports for 2 security bugs in Chromium: CVE-2024-3157: Out of bounds write in Compositing CVE-2024-3516: Heap buffer overflow in ANGLE...

9.6CVSS7.7AI score0.01EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/04/16 12:0 a.m.•33 views

electron{27,28,29} -- multiple vulnerabilities

Electron develpers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-3515. Security: backported fix for CVE-2024-3516. Security: backported fix for CVE-2024-3157. Security: backported fix for CVE-2024-1580...

9.6CVSS7.4AI score0.01835EPSS
Exploits3References4
FreeBSD
FreeBSD
•added 2024/04/16 12:0 a.m.•32 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 23 security fixes: 331358160 High CVE-2024-3832: Object corruption in V8. Reported by Man Yue Mo of GitHub Security Lab on 2024-03-27 331383939 High CVE-2024-3833: Object corruption in WebAssembly. Reported by Man Yue Mo of GitHub Security Lab on...

9.8CVSS7.8AI score0.14958EPSS
Exploits10References1
FreeBSD
FreeBSD
•added 2024/04/11 12:0 a.m.•54 views

php -- Multiple vulnerabilities

This update includes 3 security fixes: High CVE-2024-1874: Command injection via array-ish $command parameter of procopen even if bypassshell option enabled on Windows High CVE-2024-1874: Command injection via array-ish $command parameter of procopen even if bypassshell option enabled on Windows...

9.4CVSS7.5AI score0.3786EPSS
Exploits4References4
FreeBSD
FreeBSD
•added 2024/04/10 12:0 a.m.•19 views

electron{27,28} -- Out of bounds memory access in V8

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2024-3159...

8.8CVSS7AI score0.01599EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/10 12:0 a.m.•29 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 3 security fixes: 331237485 High CVE-2024-3157: Out of bounds write in Compositing. Reported by DarkNavy on 2024-03-26 328859176 High CVE-2024-3516: Heap buffer overflow in ANGLE. Reported by Bao zx Pham and Toan suto Pham of Qrious Secure on 2024-03-...

9.6CVSS8.2AI score0.01EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2024/04/10 12:0 a.m.•29 views

Gitlab -- Patch Release: 16.10.2, 16.9.4, 16.8.6

Gitlab reports: Stored XSS injected in diff viewer Stored XSS via autocomplete results Redos on Integrations Chat Messages Redos During Parse Junit Test Report...

8.7CVSS6AI score0.00601EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/04/09 12:0 a.m.•8 views

wordpress -- XSS

The Wordpress team reports: A cross-site scripting XSS vulnerability affecting the Avatar block type...

6.1AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/08 12:0 a.m.•30 views

OpenSSL -- Unbounded memory growth with session handling in TLSv1.3

The OpenSSL project reports: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions...

5.9CVSS6.9AI score0.54026EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/07 12:0 a.m.•24 views

frr - Multiple vulnerabilities

[email protected] reports: In FRRouting FRR through 9.1, there are multiples vulnerabilities. CVE-2024-31950: buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets CVE-2024-31951: buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets...

6.5CVSS7.9AI score0.0054EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/04 12:0 a.m.•26 views

forgejo -- multiple issues

The forgejo team reports: CVE-2024-24789: The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment could be exploited to create an zip file with contents that vary depending on the implementation reading the...

5.5CVSS6.8AI score0.00446EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/04 12:0 a.m.•15 views

Request Tracker -- information exposure vulnerability

Request Tracker reports: CVE-2024-3262 describes previously viewed pages being stored in the browser cache, which is the typical default behavior of most browsers to enable the "back" button. Someone who gains access to a host computer could potentially view ticket data using the back button, eve...

5.5CVSS6.9AI score0.00285EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/04 12:0 a.m.•27 views

forgejo -- HTTP/2 CONTINUATION flood in net/http

[email protected] reports: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's heade...

7.5CVSS6.9AI score0.91969EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2024/04/04 12:0 a.m.•83 views

Apache httpd -- multiple vulnerabilities

The Apache httpd project reports: HTTP/2 DoS by memory exhaustion on endless continuation frames HTTP Response Splitting in multiple modules...

7.5CVSS7AI score0.91327EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2024/04/03 12:0 a.m.•58 views

xorg server -- Multiple vulnerabilities

The X.Org project reports: CVE-2024-31080: Heap buffer overread/data leakage in ProcXIGetSelectedEvents The ProcXIGetSelectedEvents function uses the byte-swapped length of the return data for the amount of data to return to the client, if the client has a different endianness than the X server...

7.8CVSS7.5AI score0.01843EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/03 12:0 a.m.•33 views

electron{27,28} -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-2885. Security: backported fix for CVE-2024-2883. Security: backported fix for CVE-2024-2887. Security: backported fix for CVE-2024-2886...

8.8CVSS4.7AI score0.19883EPSS
Exploits8References4
FreeBSD
FreeBSD
•added 2024/04/03 12:0 a.m.•34 views

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 16 security bugs in Chromium: CVE-2024-2625: Object lifecycle issue in V8 CVE-2024-2626: Out of bounds read in Swiftshader CVE-2024-2885: Use after free in Dawn CVE-2024-2887: Type Confusion in WebAssembly CVE-2024-3157: Out of bounds write in...

9.6CVSS8.6AI score0.19883EPSS
Exploits13References1
FreeBSD
FreeBSD
•added 2024/04/03 12:0 a.m.•38 views

GLPI -- multiple vulnerabilities

GLPI team reports: GLPI 10.0.15 Changelog SECURITY - high Authenticated SQL injection from map search CVE-2024-31456 SECURITY - high Account takeover via SQL Injection in saved searches feature CVE-2024-29889...

8.1CVSS9AI score0.6296EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/03 12:0 a.m.•31 views

go -- http2: close connections when receiving too many headers

The Go project reports: http2: close connections when receiving too many headers Maintaining HPACK state requires that we parse and process all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed MaxHeaderBytes, we don't allocate memory to store the excess headers but...

7.5CVSS7AI score0.91969EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2024/04/02 12:0 a.m.•22 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 3 security fixes: 329130358 High CVE-2024-3156: Inappropriate implementation in V8. Reported by Zhenghang Xiao @Kipreyyy on 2024-03-12 329965696 High CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish on 2024-03-17 330760873 High...

8.8CVSS7.3AI score0.01599EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2024/04/01 12:0 a.m.•37 views

PuTTY and embedders (f.i., filezilla) -- biased RNG with NIST P521/ecdsa-sha2-nistp521 signatures permits recovering private key

Simon Tatham reports: ECDSA signatures using 521-bit keys the NIST P521 curve, otherwise known as ecdsa-sha2-nistp521 were generated with biased random numbers. This permits an attacker in possession of a few dozen signatures to RECOVER THE PRIVATE KEY. Any 521-bit ECDSA private key that PuTTY or...

5.9CVSS6.7AI score0.05773EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2024/03/28 12:0 a.m.•28 views

electron{27,28} -- Object lifecycle issue in V8

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2024-2625...

8.8CVSS7AI score0.01044EPSS
Exploits0References1
Total number of security vulnerabilities6579