Lucene search
K
FreebsdRecent

6583 matches found

FreeBSD
FreeBSD
•added 2017/10/27 12:0 a.m.•33 views

konversation -- crash in IRC message parsing

KDE reports: Konversation has support for colors in IRC messages. Any malicious user connected to the same IRC network can send a carefully crafted message that will crash the Konversation user client...

7.5CVSS7.3AI score0.02732EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/10/26 12:0 a.m.•53 views

PHP -- denial of service attack

The PHP project reports: The PHP development team announces the immediate availability of PHP 5.6.32. This is a security release. Several security bugs were fixed in this release. All PHP 5.6 users are encouraged to upgrade to this version. The PHP development team announces the immediate...

9.8CVSS9.2AI score0.07791EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2017/10/26 12:0 a.m.•56 views

chromium -- Stack overflow in V8

Google Chrome Releases reports: 2 security fixes in this release, including: 770452 High CVE-2017-15396: Stack overflow in V8. Reported by Yuan Deng of Ant-financial Light-Year Security Lab on 2017-09-30 770450 Medium CVE-2017-15406: Stack overflow in V8. Reported by Yuan Deng of Ant-financial...

8.8CVSS7.9AI score0.02203EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/23 12:0 a.m.•49 views

cURL -- out of bounds read

The cURL project reports: libcurl contains a buffer overrun flaw in the IMAP handler. An IMAP FETCH response line indicates the size of the returned data, in number of bytes. When that response says the data is zero bytes, libcurl would pass on that non-existing data with a pointer and the size...

9.1CVSS9.1AI score0.06224EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/20 12:0 a.m.•48 views

wget -- Stack overflow in HTTP protocol handling

Antti Levomäki, Christian Jalio, Joonas Pihlaja: Wget contains two vulnerabilities, a stack overflow and a heap overflow, in the handling of HTTP chunked encoding. By convincing a user to download a specific link over HTTP, an attacker may be able to execute arbitrary code with the privileges of...

9.3CVSS9.2AI score0.79855EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2017/10/20 12:0 a.m.•27 views

wget -- Heap overflow in HTTP protocol handling

Antti Levomäki, Christian Jalio, Joonas Pihlaja: Wget contains two vulnerabilities, a stack overflow and a heap overflow, in the handling of HTTP chunked encoding. By convincing a user to download a specific link over HTTP, an attacker may be able to execute arbitrary code with the privileges of...

9.3CVSS9.2AI score0.36563EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/18 12:0 a.m.•53 views

MySQL -- multiple vulnerabilities

Oracle reports: Please reference CVE/URL list for details...

7.5CVSS6.7AI score0.04291EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/18 12:0 a.m.•71 views

webkit2-gtk3 -- multiple vulnerabilities

The WebKit team reports many vulnerabilities. Please reference the CVE/URL list for details...

8.8CVSS7.7AI score0.93838EPSS
Exploits67References5
FreeBSD
FreeBSD
•added 2017/10/17 12:0 a.m.•33 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 35 security fixes in this release, including: 762930 High CVE-2017-5124: UXSS with MHTML. Reported by Anonymous on 2017-09-07 749147 High CVE-2017-5125: Heap overflow in Skia. Reported by Anonymous on 2017-07-26 760455 High CVE-2017-5126: Use after free in PDFium...

8.8CVSS8.3AI score0.05245EPSS
Exploits6References1
FreeBSD
FreeBSD
•added 2017/10/17 12:0 a.m.•27 views

Node.js -- remote DOS security vulnerability

Node.js reports: Node.js was susceptible to a remote DoS attack due to a change that came in as part of zlib v1.2.9. In zlib v1.2.9 8 became an invalid value for the windowBits parameter and Node's zlib module will crash or throw an exception depending on the version...

7.5CVSS7.6AI score0.08144EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/17 12:0 a.m.•27 views

GitLab -- multiple vulnerabilities

GitLab reports: Cross-Site Scripting XSS vulnerability in the Markdown sanitization filter Yasin Soliman via HackerOne reported a Cross-Site Scripting XSS vulnerability in the GitLab markdown sanitization filter. The sanitization filter was not properly stripping invalid characters from URL schem...

5.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/16 12:0 a.m.•23 views

FreeBSD -- WPA2 protocol vulnerability

Problem Description: A vulnerability was found in how a number of implementations can be triggered to reconfigure WPA/WPA2/RSN keys TK, GTK, or IGTK by replaying a specific frame that is used to manage the keys. Impact: Such reinstallation of the encryption key can result in two different types o...

6.3AI score
Exploits0
FreeBSD
FreeBSD
•added 2017/10/16 12:0 a.m.•45 views

WPA packet number reuse with replayed messages and key reinstallation

wpasupplicant developers report: A vulnerability was found in how a number of implementations can be triggered to reconfigure WPA/WPA2/RSN keys TK, GTK, or IGTK by replaying a specific frame that is used to manage the keys...

8.1CVSS7.2AI score0.04575EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2017/10/16 12:0 a.m.•16 views

bro -- out of bounds write allows remote DOS

Frank Meier: Bro before Bro v2.5.2 is vulnerable to an out of bounds write in the ContentLine analyzer allowing remote attackers to cause a denial of service crash and possibly other exploitation...

9.8CVSS8.9AI score0.02267EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/16 12:0 a.m.•31 views

Flash Player -- Remote code execution

Adobe reports: This update resolves a type confusion vulnerability that could lead to remote code execution CVE-2017-11292...

8.8CVSS8.6AI score0.12104EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/15 12:0 a.m.•73 views

asterisk -- Memory/File Descriptor/RTP leak in pjsip session resource

The Asterisk project reports: A memory leak occurs when an Asterisk pjsip session object is created and that call gets rejected before the session itself is fully established. When this happens the session object never gets destroyed. This then leads to file descriptors and RTP ports being leaked...

5.9CVSS7.3AI score0.04678EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/13 12:0 a.m.•43 views

solr -- Code execution via entity expansion

Solr developers report: Lucene XML parser does not explicitly prohibit doctype declaration and expansion of external entities which leads to arbitrary HTTP requests to the local SOLR instance and to bypass all firewall restrictions. Solr "RunExecutableListener" class can be used to execute...

9.8CVSS9.6AI score0.91896EPSS
Exploits11References2
FreeBSD
FreeBSD
•added 2017/10/13 12:0 a.m.•25 views

rubygem-passenger -- arbitrary file read vulnerability

Phusion reports: The cPanel Security Team discovered a vulnerability in Passenger that allows users to list the contents of arbitrary files on the system. CVE-2017-16355 has been assigned to this issue...

4.7CVSS5.5AI score0.00358EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/12 12:0 a.m.•17 views

xen-kernel -- multiple vulnerabilities

The Xen project reports multiple vulnerabilities...

2AI score
Exploits0References8
FreeBSD
FreeBSD
•added 2017/10/12 12:0 a.m.•39 views

xorg-server -- multiple vulnerabilities

Adam Jackson reports: One regression fix since 1.19.4 mea culpa, and fixes for CVEs 2017-12176 through 2017-12187...

9.8CVSS9.3AI score0.0437EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/10/11 12:0 a.m.•26 views

jenkins -- multiple issues

jenkins developers report: A total of 11 issues are reported, please see reference URL for details...

1.3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/10 12:0 a.m.•27 views

irssi -- multiple vulnerabilities

Irssi reports: When installing themes with unterminated colour formatting sequences, Irssi may access data beyond the end of the string. While waiting for the channel synchronisation, Irssi may incorrectly fail to remove destroyed channels from the query list, resulting in use after free conditio...

7.5CVSS6.9AI score0.02371EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/10 12:0 a.m.•27 views

PostgreSQL vulnerabilities

The PostgreSQL project reports: CVE-2017-15098: Memory disclosure in JSON functions CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges...

8.1CVSS7.2AI score0.06324EPSS
Exploits0
FreeBSD
FreeBSD
•added 2017/10/10 12:0 a.m.•30 views

wireshark -- multiple security issues

wireshark developers reports: In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements. In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp...

7.8CVSS7.6AI score0.02697EPSS
Exploits0References25
FreeBSD
FreeBSD
•added 2017/10/10 12:0 a.m.•22 views

cacti -- Cross Site Scripting issue

cacti developers report: The file include/globalsession.php in Cacti 1.1.25 has XSS related to 1 the URI or 2 the refresh page...

6.1CVSS6AI score0.0107EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2017/10/09 12:0 a.m.•66 views

salt -- multiple vulnerabilities

SaltStack reports: Directory traversal vulnerability in minion id validation in SaltStack. Allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. Credit for discovering the security flaw goes to: Julian Brost [email protected]. NOTE: this vulnerabili...

9.8CVSS8.7AI score0.04629EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2017/10/09 12:0 a.m.•39 views

zookeeper -- Denial Of Service

zookeeper developers report: Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests. Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from...

7.5CVSS7.7AI score0.73654EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/09 12:0 a.m.•33 views

ffmpeg -- multiple vulnerabilities

MITRE reports: Multiple vulnerabilities have been found in FFmpeg. Please refer to CVE list for details. Note: CVE-2017-15186 and CVE-2017-15672 affect only the 3.3 branch before 3.3.5, CVE-2017-16840 and CVE-2017-17081 have been fixed in 3.4.1. They're listed here for completeness of the record...

9.8CVSS2.1AI score0.03332EPSS
Exploits0References6
FreeBSD
FreeBSD
•added 2017/10/09 12:0 a.m.•34 views

rubygems -- deserialization vulnerability

oss-security mailing list: There is a possible unsafe object desrialization vulnerability in RubyGems. It is possible for YAML deserialization of gem specifications to bypass class white lists. Specially crafted serialized objects can possibly be used to escalate to remote code execution...

9.8CVSS9.5AI score0.15853EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2017/10/09 12:0 a.m.•26 views

asterisk -- Buffer overflow in CDR's set user

The Asterisk project reports: No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. The earlier AST-2017-001 advisory for the CDR user field overflow w...

8.8CVSS8.7AI score0.03344EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/08 12:0 a.m.•33 views

unbound -- vulnerability in the processing of wildcard synthesized NSEC records

Unbound reports: We discovered a vulnerability in the processing of wildcard synthesized NSEC records. While synthesis of NSEC records is allowed by RFC4592, these synthesized owner names should not be used in the NSEC processing. This does, however, happen in Unbound 1.6.7 and earlier versions...

5.3CVSS6.1AI score0.0263EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/05 12:0 a.m.•19 views

asterisk -- Buffer overflow in pjproject header parsing can cause crash in Asterisk

The Asterisk project reports: By carefully crafting invalid values in the Cseq and the Via header port, pjprojects packet parsing code can create strings larger than the buffer allocated to hold them. This will usually cause Asterisk to crash immediately. The packets do not have to be authenticat...

7.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/05 12:0 a.m.•36 views

mercurial -- multiple issues

mercurial developers reports: Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks...

8.7AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2017/10/04 12:0 a.m.•22 views

libXfont -- multiple memory leaks

The freedesktop.org project reports: If a pattern contains '?' character, any character in the string is skipped, even if it is '\0'. The rest of the matching then reads invalid memory. Without the checks a malformed PCF file can cause the library to make atom from random heap memory that was...

7.1CVSS6.9AI score0.00396EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/10/04 12:0 a.m.•56 views

cURL -- out of bounds read

The cURL project reports: FTP PWD response parser out of bounds read libcurl may read outside of a heap allocated buffer when doing FTP. When libcurl connects to an FTP server and successfully logs in anonymous or not, it asks the server for the current directory with the PWD command. The server...

7.5CVSS7.8AI score0.08465EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/04 12:0 a.m.•93 views

tomcat -- Remote Code Execution

tomcat developers reports: When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled e.g. via setting the readonly initialisation parameter of the Default servlet to false it was possible to upload a JSP file to the serv...

8.1CVSS8.2AI score0.99988EPSS
Exploits23References2
FreeBSD
FreeBSD
•added 2017/10/04 12:0 a.m.•40 views

xorg-server -- multiple vulnerabilities

Alan Coopersmith reports: X.Org thanks Michal Srb of SuSE for finding these issues and bringing them to our attention, Julien Cristau of Debian for getting the fixes integrated, and Adam Jackson of Red Hat for publishing the release...

6.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2017/10/02 12:0 a.m.•68 views

dnsmasq -- multiple vulnerabilities

Google Project Zero reports: CVE-2017-14491: Heap based overflow 2 bytes. Before 2.76 and this commit overflow was unrestricted. CVE-2017-14492: Heap based overflow. CVE-2017-14493: Stack Based overflow. CVE-2017-14494: Information Leak CVE-2017-14495: Lack of free CVE-2017-14496: Invalid boundar...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References1
FreeBSD
FreeBSD
•added 2017/09/28 12:0 a.m.•48 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2017-7793: Use-after-free with Fetch API CVE-2017-7817: Firefox for Android address bar spoofing through fullscreen mode CVE-2017-7818: Use-after-free during ARIA array manipulation CVE-2017-7819: Use-after-free while resizing images in design mode CVE-2017-7824:...

10CVSS1AI score0.03641EPSS
Exploits13References2
FreeBSD
FreeBSD
•added 2017/09/27 12:0 a.m.•24 views

node -- access to unintended files

node developers report: Node.js 8.5.0 before 8.6.0 allows remote attackers to access unintended files, because a change to ".." handling was incompatible with the pathname validation used by unspecified community modules...

7.5CVSS7.4AI score0.53416EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2017/09/25 12:0 a.m.•15 views

codeigniter -- input validation bypass

The CodeIgniter changelog reports: Security: Fixed a potential object injection in Cache Library 'apc' driver when save is used with $raw = TRUE...

2.8AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2017/09/23 12:0 a.m.•33 views

weechat -- crash in logger plugin

WeeChat reports: security problem: a crash can happen in logger plugin when converting date/time specifiers in file mask...

7.5CVSS7.6AI score0.02836EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/09/23 12:0 a.m.•55 views

wordpress -- multiple issues

wordpress developers report: Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL. Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name. Before versi...

7.5CVSS6.4AI score0.13385EPSS
Exploits1References12
FreeBSD
FreeBSD
•added 2017/09/21 12:0 a.m.•31 views

sam2p -- multiple issues

sam2p developers report: In sam2p 0.49.3, a heap-based buffer overflow exists in the pcxLoadImage24 function of the file inpcx.cpp. In sam2p 0.49.3, the inxpmreader function in inxpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element. In sam2p...

9.8CVSS9.1AI score0.01694EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2017/09/21 12:0 a.m.•32 views

chromium -- multiple vulnerabilities

Google Chrome releases reports: 3 security fixes in this release, including: 765433 High CVE-2017-5121: Out-of-bounds access in V8. Reported by Jordan Rabet, Microsoft Offensive Security Research and Microsoft ChakraCore team on 2017-09-14 752423 High CVE-2017-5122: Out-of-bounds access in V8...

8.8CVSS8.5AI score0.05288EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/09/21 12:0 a.m.•27 views

OpenVPN -- out-of-bounds write in legacy key-method 1

Steffan Karger reports: The bounds check in readkey was performed after using the value, instead of before. If 'key-method 1' is used, this allowed an attacker to send a malformed packet to trigger a stack buffer overflow. ... Note that 'key-method 1' has been replaced by 'key method 2' as the...

9.8CVSS8.8AI score0.03629EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/09/21 12:0 a.m.•39 views

ImageMagick -- denial of service via a crafted font file

MITRE reports: The ReadCAPTIONImage function in coders/caption.c in ImageMagick allows remote attackers to cause a denial of service infinite loop via a crafted font file...

6.5CVSS7.4AI score0.01375EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2017/09/21 12:0 a.m.•35 views

libvorbis -- two vulnerabilities

Two vulnerabilities were fixed in the upstream repository: The barknoisehybridmp function allows remote attackers to cause a denial of service out-of-bounds access and application crash or possibly have unspecified other impact via a crafted file. mapping0forward does not validate the number of...

7.7AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2017/09/20 12:0 a.m.•24 views

libraw -- Out-of-bounds Read

libraw developers report: In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

9.1CVSS8.8AI score0.02095EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/09/20 12:0 a.m.•29 views

phpmyfaq -- multiple issues

phpmyfaq developers report: Cross-site scripting XSS vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action. Cross-site scripting XSS vulnerability in phpMyFAQ through 2.9.8 allow...

5.9AI score
Exploits0References2
Total number of security vulnerabilities6583