Lucene search
K
FreebsdRecent

6585 matches found

FreeBSD
FreeBSD
•added 2015/04/15 12:0 a.m.•83 views

proftpd -- arbitrary code execution vulnerability with chroot

ProFTPd development team reports: Vadim Melihow reported a critical issue with proftpd installations that use the modcopy module's SITE CPFR/SITE CPTO commands; modcopy allows these commands to be used by unauthenticated clients...

10CVSS9.2AI score0.96803EPSS
Exploits22References1
FreeBSD
FreeBSD
•added 2015/04/14 12:0 a.m.•37 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 45 new security fixes, including: 456518 High CVE-2015-1235: Cross-origin-bypass in HTML parser. Credit to anonymous. 313939 Medium CVE-2015-1236: Cross-origin-bypass in Blink. Credit to Amitay Dobo. 461191 High CVE-2015-1237: Use-after-free in IPC. Credit to Khali...

7.5CVSS6.7AI score0.02702EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2015/04/14 12:0 a.m.•39 views

Adobe Flash Player -- critical vulnerabilities

Adobe reports: Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2015-3043 exists in...

10CVSS7.6AI score0.95184EPSS
Exploits11References1
FreeBSD
FreeBSD
•added 2015/04/14 12:0 a.m.•40 views

libxml2 -- Enforce the reader to run in constant memory

Daniel Veilland reports: Enforce the reader to run in constant memory. One of the operation on the reader could resolve entities leading to the classic expansion issue. Make sure the buffer used for xmlreader operation is bounded. Introduce a new allocation type for the buffers for this effect...

5CVSS9.2AI score0.0634EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/14 12:0 a.m.•48 views

sqlite -- multiple vulnerabilities

NVD reports: SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service uninitialized memory access and application crash or possibly have unspecified other impact via a crafted COLLATE clause, a...

7.5CVSS7.1AI score0.05531EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2015/04/13 12:0 a.m.•54 views

Ruby -- OpenSSL Hostname Verification Vulnerability

Ruby Developers report: After reviewing RFC 6125 and RFC 5280, we found multiple violations of matching hostnames and particularly wildcard certificates. Ruby’s OpenSSL extension will now provide a string-based matching algorithm which follows more strict behavior, as recommended by these RFCs. I...

5.9CVSS6.4AI score0.02815EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/12 12:0 a.m.•33 views

qt4-imageformats, qt4-gui, qt5-gui -- Multiple Vulnerabilities in Qt Image Format Handling

Richard J. Moore reports: Due to two recent vulnerabilities identified in the built-in image format handling code, it was decided that this area required further testing to determine if further issues remained. Fuzzing using afl-fuzz located a number of issues in the handling of BMP, ICO and GIF...

9AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/12 12:0 a.m.•35 views

ffmpeg -- out-of-bounds array access

NVD reports: The msrledecodepal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel...

6.8CVSS8.4AI score0.02393EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2015/04/11 12:0 a.m.•47 views

net-snmp -- snmp_pdu_parse() function incomplete initialization

Qinghao Tang reports: Incompletely initialized vulnerability exists in the function ‘snmppduparse’ of ‘snmpapi.c', and remote attackers can cause memory leak, DOS and possible command executions by sending malicious packets...

7.5CVSS8.1AI score0.40002EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2015/04/11 12:0 a.m.•35 views

libtasn1 -- stack-based buffer overflow in asn1_der_decoding

Debian reports: Hanno Boeck discovered a stack-based buffer overflow in the asn1derdecoding function in Libtasn1, a library to manage ASN.1 structures. A remote attacker could take advantage of this flaw to cause an application using the Libtasn1 library to crash, or potentially to execute...

10CVSS7.2AI score0.07801EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/11 12:0 a.m.•22 views

Wesnoth -- Remote information disclosure

US-CERT/NIST reports: The WML/Lua API in Battle for Wesnoth 1.7.x through 1.11.x and 1.12.x before 1.12.2 allows remote attackers to read arbitrary files via a crafted 1 campaign or 2 map file...

5CVSS6.4AI score0.02322EPSS
Exploits0
FreeBSD
FreeBSD
•added 2015/04/10 12:0 a.m.•31 views

qemu -- Heap overflow in QEMU PCNET controller, allowing guest to host escape (CVE-2015-3209)

The QEMU security team reports: A guest which has access to an emulated PCNET network device e.g. with "model=pcnet" in their VIF configuration can exploit this vulnerability to take over the qemu process elevating its privilege to that of the qemu process...

7.5CVSS6.1AI score0.09668EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/10 12:0 a.m.•31 views

PostgreSQL -- minor security problems.

PostgreSQL project reports: This update fixes three security vulnerabilities reported in PostgreSQL over the past few months. Nether of these issues is seen as particularly urgent. However, users should examine them in case their installations are vulnerable:. CVE-2015-3165 Double "free" after...

9.8CVSS9.4AI score0.08565EPSS
Exploits0
FreeBSD
FreeBSD
•added 2015/04/08 12:0 a.m.•30 views

libksba -- local denial of service vulnerabilities

Martin Prpic, Red Hat Product Security Team, reports: Denial of Service due to stack overflow in src/ber-decoder.c. Integer overflow in the BER decoder src/ber-decoder.c. Integer overflow in the DN decoder src/dn.c...

7.5CVSS3.4AI score0.02928EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2015/04/08 12:0 a.m.•20 views

arj -- multiple vulnerabilities

Several vulnerabilities: symlink directory traversal, absolute path directory traversal and buffer overflow were discovered in the arj archiver...

7.5CVSS7AI score0.05889EPSS
Exploits2
FreeBSD
FreeBSD
•added 2015/04/08 12:0 a.m.•16 views

pgbouncer -- remote denial of service

PgBouncer reports: Fix remote crash - invalid packet order causes lookup of NULL pointer. Not exploitable, just DoS...

7.5CVSS7.7AI score0.0413EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2015/04/07 12:0 a.m.•27 views

FreeBSD -- Denial of Service with IPv6 Router Advertisements

Problem Description: The Neighbor Discover Protocol allows a local router to advertise a suggested Current Hop Limit value of a link, which will replace Current Hop Limit on an interface connected to the link on the FreeBSD system. Impact: When the Current Hop Limit similar to IPv4's TTL is small...

6.5CVSS6.2AI score0.01378EPSS
Exploits0
FreeBSD
FreeBSD
•added 2015/04/07 12:0 a.m.•24 views

FreeBSD -- Insecure default GELI keyfile permissions

Problem Description: The default permission set by bsdinstall8 installer when configuring full disk encrypted ZFS is too open. Impact: A local attacker may be able to get a copy of the geli8 provider's keyfile which is located at a fixed location...

2.1CVSS6AI score0.0035EPSS
Exploits2
FreeBSD
FreeBSD
•added 2015/04/07 12:0 a.m.•10 views

rubygem-redcarpet -- XSS vulnerability

Daniel LeCheminant reports: When markdown is being presented as HTML, there seems to be a strange interaction between and @ that lets an attacker insert malicious tags...

1.9AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2015/04/07 12:0 a.m.•57 views

ntp -- multiple vulnerabilities

ntp.org reports: Sec 2779 ntpd accepts unauthenticated packets with symmetric key crypto. Sec 2781 Authentication doesn't protect symmetric associations against DoS attacks...

6.8AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/07 12:0 a.m.•26 views

dnsmasq -- data exposure and denial of service

Nick Sampanis reported a potential memory exposure and denial of service vulnerability against dnsmasq 2.72. The CVE entry summarizes this as: The tcprequest function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setupreply function, which allows remote attackers to...

6.4CVSS8.7AI score0.04456EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2015/04/04 12:0 a.m.•28 views

pidgin-otr -- use after free

Hanno Bock reports: The pidgin-otr plugin version 4.0.2 fixes a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function createsmpdialog...

10CVSS9.2AI score0.07032EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2015/04/04 12:0 a.m.•32 views

asterisk -- TLS Certificate Common name NULL byte exploit

The Asterisk project reports: When Asterisk registers to a SIP TLS device and and verifies the server, Asterisk will accept signed certificates that match a common name other than the one Asterisk is expecting if the signed certificate has a common name containing a null byte after the portion of...

4.3CVSS7.4AI score0.46156EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/04 12:0 a.m.•17 views

freeradius3 -- insufficient validation on packets

Jouni Malinen reports: The EAP-PWD module performed insufficient validation on packets received from an EAP peer. This module is not enabled in the default configuration. Administrators must manually enable it for their server to be vulnerable. Only versions 3.0 up to 3.0.8 are affected...

4AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/04/03 12:0 a.m.•35 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2015-44 Certificate verification bypass through the HTTP/2 Alt-Svc header MFSA 2015-43 Loading privileged content through Reader mode...

9.2AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2015/04/01 12:0 a.m.•30 views

cassandra -- remote execution of arbitrary code

Jake Luciani reports: Under its default configuration, Cassandra binds an unauthenticated JMX/RMI interface to all network interfaces. As RMI is an API for the transport and remote execution of serialized Java, anyone with access to this interface can execute arbitrary code as the running user...

7.5CVSS7.7AI score0.06692EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/31 12:0 a.m.•34 views

xen-tools -- Unmediated PCI command register access in qemu

The Xen Project reports: HVM guests are currently permitted to modify the memory and I/O decode bits in the PCI command register of devices passed through to them. Unless the device is an SR-IOV virtual function, after disabling one or both of these bits subsequent accesses to the MMIO or I/O por...

4.9CVSS7AI score0.0045EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/31 12:0 a.m.•36 views

subversion -- DoS vulnerabilities

Subversion Project reports: Subversion HTTP servers with FSFS repositories are vulnerable to a remotely triggerable excessive memory use with certain REPORT requests. Subversion moddavsvn and svnserve are vulnerable to a remotely triggerable assertion DoS vulnerability for certain requests with...

7.8CVSS6.8AI score0.12841EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2015/03/31 12:0 a.m.•25 views

xen-kernel -- Certain domctl operations may be abused to lock up the host

The Xen Project reports: XSA-77 put the majority of the domctl operations on a list excepting them from having security advisories issued for them if any effects their use might have could hamper security. Subsequently some of them got declared disaggregation safe, but for a small subset this was...

7.1CVSS8.8AI score0.02278EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/31 12:0 a.m.•30 views

xen-kernel and xen-tools -- Long latency MMIO mapping operations are not preemptible

The Xen Project reports: The XENDOMCTLmemorymapping hypercall allows long running operations without implementing preemption. This hypercall is used by the device model as part of the emulation associated with configuration of PCI devices passed through to HVM guests and is therefore indirectly...

4.9CVSS6.6AI score0.00453EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/31 12:0 a.m.•39 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA-2015-30 Miscellaneous memory safety hazards rv:37.0 / rv:31.6 MFSA-2015-31 Use-after-free when using the Fluendo MP3 GStreamer plugin MFSA-2015-32 Add-on lightweight theme installation approval bypassed through MITM attack MFSA-2015-33 resource:// documents can...

7.5CVSS9.8AI score0.67465EPSS
Exploits4References14
FreeBSD
FreeBSD
•added 2015/03/27 12:0 a.m.•26 views

mailman -- path traversal vulnerability

Mark Sapiro reports: A path traversal vulnerability has been discovered and fixed. This vulnerability is only exploitable by a local user on a Mailman server where the suggested Exim transport, the Postfix postfixtomailman.py transport or some other programmatic MTA delivery not using aliases is...

7.6CVSS8.4AI score0.07964EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2015/03/27 12:0 a.m.•27 views

cpio -- multiple vulnerabilities

From the Debian Security Team: Heap-based buffer overflow in the processcopyin function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive. cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitra...

5CVSS8.2AI score0.07093EPSS
Exploits5References2
FreeBSD
FreeBSD
•added 2015/03/24 12:0 a.m.•23 views

freexl -- multiple vulnerabilities

Jodie Cunningham reports: 1: A flaw was found in the way FreeXL reads sectors from the input file. A specially crafted file could possibly result in stack corruption near freexl.c:3752. 2: A flaw was found in the function allocatecells. A specially crafted file with invalid workbook dimensions...

4.3CVSS6.7AI score0.02375EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/24 12:0 a.m.•32 views

rest-client -- session fixation vulnerability

Andy Brody reports: When Ruby rest-client processes an HTTP redirection response, it blindly passes along the values from any Set-Cookie headers to the redirection target, regardless of domain, path, or expiration...

9.8CVSS9.1AI score0.04345EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/24 12:0 a.m.•36 views

Several vulnerabilities in libav

The libav project reports: utvideodec: Handle sliceheight being zero CVE-2014-9604 tiff: Check that there is no aliasing in pixel format selection CVE-2014-8544...

7.5CVSS8.6AI score0.03143EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/23 12:0 a.m.•36 views

qemu -- denial of service vulnerability

Daniel P. Berrange reports: The VNC server websockets decoder will read and buffer data from websockets clients until it sees the end of the HTTP headers, as indicated by \r\n\r\n. In theory this allows a malicious to trick QEMU into consuming an arbitrary amount of RAM...

8.6CVSS8.5AI score0.07393EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/23 12:0 a.m.•16 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description SECURITY-171, SECURITY-177 Reflective XSS vulnerability An attacker without any access to Jenkins can navigate the user to a carefully crafted URL and have the user execute unintended actions. This vulnerability can be used to attack Jenkins inside firewalls...

3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/20 12:0 a.m.•48 views

mysql -- SSL Downgrade

Duo Security reports: Researchers have identified a serious vulnerability in some versions of Oracle’s MySQL database product that allows an attacker to strip SSL/TLS connections of their security wrapping transparently...

5.9CVSS6.4AI score0.07083EPSS
Exploits1References6
FreeBSD
FreeBSD
•added 2015/03/20 12:0 a.m.•25 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA-2015-28 Privilege escalation through SVG navigation MFSA-2015-29 Code execution through incorrect JavaScript bounds checking elimination...

9.6AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2015/03/19 12:0 a.m.•59 views

Several vulnerabilities found in PHP

The PHP project reports: The PHP development team announces the immediate availability of PHP 5.6.7. Several bugs have been fixed as well as CVE-2015-0231, CVE-2015-2305 and CVE-2015-2331. All PHP 5.6 users are encouraged to upgrade to this version. The PHP development team announces the immediat...

9.8CVSS8AI score0.42593EPSS
Exploits7References1
FreeBSD
FreeBSD
•added 2015/03/19 12:0 a.m.•57 views

OpenSSL -- multiple vulnerabilities

OpenSSL project reports: Reclassified: RSA silently downgrades to EXPORTRSA Client CVE-2015-0204. OpenSSL only. Segmentation fault in ASN1TYPEcmp CVE-2015-0286 ASN.1 structure reuse memory corruption CVE-2015-0287 PKCS7 NULL pointer dereferences CVE-2015-0289 Base64 decode CVE-2015-0292. OpenSSL...

7.5CVSS7.1AI score0.98685EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2015/03/18 12:0 a.m.•91 views

libzip -- integer overflow

libzip developers report: Avoid integer overflow. Fixed similarly to patch used in PHP copy of libzip...

7.5CVSS7.9AI score0.27869EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2015/03/18 12:0 a.m.•25 views

django -- multiple vulnerabilities

The Django project reports: In accordance with our security release policy, the Django team is issuing multiple releases -- Django 1.4.20, 1.6.11, 1.7.7 and 1.8c1. These releases are now available on PyPI and our download page. These releases address several security issues detailed below. We...

6.6AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/17 12:0 a.m.•23 views

libXfont -- BDF parsing issues

Alan Coopersmith reports: Ilja van Sprundel, a security researcher with IOActive, has discovered an issue in the parsing of BDF font files by libXfont. Additional testing by Alan Coopersmith and William Robinet with the American Fuzzy Lop afl tool uncovered two more issues in the parsing of BDF...

8.5CVSS5.3AI score0.04923EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/16 12:0 a.m.•33 views

osc -- shell command injection via crafted _service files

SUSE Security Update reports: osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell metacharacters in a service file...

7.5CVSS6.7AI score0.03608EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2015/03/14 12:0 a.m.•44 views

libuv -- incorrect revocation order while relinquishing privileges

Nodejs releases reports: CVE-2015-0278 This may potentially allow an attacker to gain elevated privileges...

10CVSS6.7AI score0.03242EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/13 12:0 a.m.•38 views

xen-tools -- HVM qemu unexpectedly enabling emulated VGA graphics backends

The Xen Project reports: When instantiating an emulated VGA device for an x86 HVM guest qemu will by default enable a backend to expose that device, either SDL or VNC depending on the version of qemu and the build time configuration. The libxl toolstack library does not explicitly disable these...

1.9CVSS9.1AI score0.00419EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/03/12 12:0 a.m.•39 views

ffmpeg -- multiple vulnerabilities

Please reference CVE/URL list for details...

8.8CVSS7.8AI score0.05739EPSS
Exploits1References13
FreeBSD
FreeBSD
•added 2015/03/12 12:0 a.m.•44 views

Adobe Flash Player -- critical vulnerabilities

Adobe reports: Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. These updates resolve memory corruption vulnerabilities that could lea...

10CVSS10.2AI score0.71536EPSS
Exploits5References1
Total number of security vulnerabilities6585