Latest freebsd freebsd Vulnerabilities

escription: By exploiting interpretation differences of the SMTP protocol, it is possible to smuggle/send spoofed e-mails - hence SMTP smuggling - while still passing SPF alignment checks. During this...
<8.18.0.2
<11.0
=8.0
=9.0
redhat/sendmail<8.18.0.2
NFS client data corruption and kernel memory disclosure
FreeBSD FreeBSD=13.2
FreeBSD FreeBSD=13.2-p1
FreeBSD FreeBSD=13.2-p2
FreeBSD FreeBSD=13.2-p3
FreeBSD FreeBSD=13.2-p4
FreeBSD FreeBSD=13.2-p5
and 8 more
TCP spoofing vulnerability in pf(4)
=12.4
=12.4-p1
=12.4-p2
=12.4-p3
=12.4-p4
=12.4-p5
and 17 more
Prefix Truncation Attacks in SSH Specification (Terrapin Attack)
ubuntu/openssh<1:7.2
ubuntu/openssh<1:7.6
ubuntu/openssh<1:9.5
ubuntu/openssh<1:8.2
ubuntu/openssh<1:8.9
ubuntu/openssh<1:9.0
and 119 more
Incorrect libcap_net limitation list manipulation
FreeBSD FreeBSD>=13.0<13.2
FreeBSD FreeBSD=13.2
FreeBSD FreeBSD=13.2-p1
FreeBSD FreeBSD=13.2-p2
FreeBSD FreeBSD=13.2-p3
FreeBSD FreeBSD=13.2-p4
libc stdio buffer overflow
FreeBSD FreeBSD<12.4
FreeBSD FreeBSD>=13.0<13.2
FreeBSD FreeBSD=12.4
FreeBSD FreeBSD=12.4-p1
FreeBSD FreeBSD=12.4-p2
FreeBSD FreeBSD=12.4-p3
and 10 more
arm64 boot CPUs may lack speculative execution protections
FreeBSD FreeBSD=13.2
msdosfs data disclosure
FreeBSD FreeBSD<12.4
FreeBSD FreeBSD>=13.0<13.2
FreeBSD FreeBSD=12.4
FreeBSD FreeBSD=12.4-p1
FreeBSD FreeBSD=12.4-p2
FreeBSD FreeBSD=12.4-p3
and 6 more
pf incorrectly handles multiple IPv6 fragment headers
FreeBSD FreeBSD<12.4
FreeBSD FreeBSD>=13.0<13.2
FreeBSD FreeBSD=12.4
FreeBSD FreeBSD=12.4-p1
FreeBSD FreeBSD=12.4-p2
FreeBSD FreeBSD=12.4-p3
and 6 more
A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field. This allows an attacker to trigger a kernel panic, r...
FreeBSD FreeBSD=12.4
FreeBSD FreeBSD=12.4-p1
FreeBSD FreeBSD=12.4-p2
FreeBSD FreeBSD=12.4-p3
FreeBSD FreeBSD=12.4-rc2-p1
FreeBSD FreeBSD=12.4-rc2-p2
and 15 more
The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process...
FreeBSD FreeBSD=13.1
FreeBSD FreeBSD=13.1-b1-p1
FreeBSD FreeBSD=13.1-b2-p2
FreeBSD FreeBSD=13.1-p1
FreeBSD FreeBSD=13.1-p2
FreeBSD FreeBSD=13.1-p3
and 8 more
pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket (tgt) from the Kerberos KDC (Key Distribution Center) over the network, as a way to verif...
FreeBSD FreeBSD<12.4
FreeBSD FreeBSD>=13.0<13.1
FreeBSD FreeBSD=12.4
FreeBSD FreeBSD=12.4-p1
FreeBSD FreeBSD=12.4-p2
FreeBSD FreeBSD=12.4-rc2-p1
and 13 more
Insufficient validation in the IOCTL input/output buffer in AMD ?Prof may allow an attacker to bypass bounds checks potentially leading to a Windows kernel crash resulting in denial of service.
Amd Amd Uprof<3.6.549
FreeBSD FreeBSD
Amd Amd Uprof<3.6.839
Microsoft Windows
Amd Amd Uprof<3.6.449
Linux Linux kernel
Insufficient validation of the IOCTL input buffer in AMD ?Prof may allow an attacker to send an arbitrary buffer leading to a potential Windows kernel crash resulting in denial of service.
Amd Amd Uprof<3.6.549
FreeBSD FreeBSD
Amd Amd Uprof<3.6.839
Microsoft Windows
Amd Amd Uprof<3.6.449
Linux Linux kernel
** UNSUPPORTED WHEN ASSIGNED ** sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial-of-service (DoS) vulnerability due to improper handling of TSopt on TCP connections. NOTE: This vulnerab...
FreeBSD FreeBSD<7.0
<7.0
In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before r370674, 13.0-RELEASE before p6, and 12.2-RELEASE before p12, certain conditions involving use of the highlight buffer while text...
FreeBSD FreeBSD=12.2
FreeBSD FreeBSD=12.2-beta1-p1
FreeBSD FreeBSD=12.2-p1
FreeBSD FreeBSD=12.2-p10
FreeBSD FreeBSD=12.2-p11
FreeBSD FreeBSD=12.2-p2
and 24 more
FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in. In particular, it uses the MD5File() function, wh...
FreeBSD FreeBSD
In FreeBSD 13.0-STABLE before n246938-0729ba2f49c9, 12.2-STABLE before r370383, 11.4-STABLE before r370381, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, the ggatec dae...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p10
FreeBSD FreeBSD=11.4-p11
FreeBSD FreeBSD=11.4-p12
FreeBSD FreeBSD=11.4-p13
and 23 more
In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before r370399, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, certain VirtIO...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p10
FreeBSD FreeBSD=11.4-p11
FreeBSD FreeBSD=11.4-p12
FreeBSD FreeBSD=11.4-p13
and 23 more
In FreeBSD 12.2-STABLE before r367402, 11.4-STABLE before r368202, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 the handler for a routing option caches a pointer into the...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-beta1
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=11.4-p4
and 14 more
In FreeBSD 13.0-STABLE before n245764-876ffe28796c, 12.2-STABLE before r369857, 13.0-RELEASE before p1, and 12.2-RELEASE before p7, a system call triggering a fault could cause SMAP protections to be ...
FreeBSD FreeBSD=12.2
FreeBSD FreeBSD=12.2-beta1-p1
FreeBSD FreeBSD=12.2-p1
FreeBSD FreeBSD=12.2-p2
FreeBSD FreeBSD=12.2-p3
FreeBSD FreeBSD=12.2-p4
and 7 more
In FreeBSD 13.0-STABLE before n245765-bec0d2c9c841, 12.2-STABLE before r369859, 11.4-STABLE before r369866, 13.0-RELEASE before p1, 12.2-RELEASE before p7, and 11.4-RELEASE before p10, missing message...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-beta1
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=11.4-p4
and 20 more
In FreeBSD 13.0-STABLE before n245050, 12.2-STABLE before r369525, 13.0-RC4 before p0, and 12.2-RELEASE before p6, listening socket accept filters implementing the accf_create callback incorrectly fre...
FreeBSD FreeBSD>=12.0<12.2
FreeBSD FreeBSD=12.2
FreeBSD FreeBSD=12.2-p1
FreeBSD FreeBSD=12.2-p2
FreeBSD FreeBSD=13.0-beta1
FreeBSD FreeBSD=13.0-beta2
and 5 more
In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11.4-STABLE before r369559, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, copy-on-write logic failed to inv...
FreeBSD FreeBSD<11.4
FreeBSD FreeBSD>=12.0<12.2
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-beta1
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
and 17 more
In FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, a superuser inside a FreeBSD jail...
FreeBSD FreeBSD<11.4
FreeBSD FreeBSD>=12.0<12.2
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-beta1
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
and 17 more
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 rtsold(8) does not verify that the RDNSS option does not e...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=12.1
FreeBSD FreeBSD=12.1-p1
and 9 more
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 when processing a DNSSL option, rtsold(8) decodes domain n...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p13
and 23 more
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a ftpd(8) bug in the implementation of the file system sa...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p13
and 23 more
In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free ...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p2
and 36 more
In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, improper mbuf handling in the kernel causes a use-after-free bug by sending IPv6 Hop-by-Hop options over the loopback interface. The use-...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p2
and 8 more
In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient(8) fails to handle certain malformed input rela...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p2
and 23 more
In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on ho...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p13
and 23 more
In FreeBSD 12.2-STABLE before r365730, 11.4-STABLE before r365738, 12.1-RELEASE before p10, 11.4-RELEASE before p4, and 11.3-RELEASE before p14, a programming error in the ure(4) device driver caused ...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
FreeBSD FreeBSD=11.3-p13
and 23 more
In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12.2-RELEASE before p3, 12.1-RELEASE before p13 and 11.4-RELEASE before p7 several file systems were not properly initializing the d_...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=11.4-p4
FreeBSD FreeBSD=11.4-p5
and 17 more
In FreeBSD 12.2-STABLE before r369346, 11.4-STABLE before r369345, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 a regression in the login.access(5) rule processor has the effect of causing rules ...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=11.4-p4
FreeBSD FreeBSD=11.4-p5
and 6 more
In FreeBSD 12.2-STABLE before r369312, 11.4-STABLE before r369313, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 due to a race condition in the jail_remove(2) implementation, it may fail to kill s...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=11.4-p4
FreeBSD FreeBSD=11.4-p5
and 6 more
In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 when a process, such as jexec(8) or killall(1), calls jail_attach(2) to enter a jai...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-p1
FreeBSD FreeBSD=11.4-p2
FreeBSD FreeBSD=11.4-p3
FreeBSD FreeBSD=11.4-p4
FreeBSD FreeBSD=11.4-p5
and 6 more
OpenSSL could allow a remote attacker to bypass security restrictions, caused by a missing check in the validation logic of X.509 certificate chains by the X509_V_FLAG_X509_STRICT flag. By using any v...
rust/openssl-src>=111.11.0<111.15.0
IBM Security Verify Access<=10.0.0
OpenSSL OpenSSL>=1.1.1h<1.1.1k
FreeBSD FreeBSD=12.2
FreeBSD FreeBSD=12.2-p1
FreeBSD FreeBSD=12.2-p2
and 52 more
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it...
rust/openssl-src<111.15.0
debian/openssl
OpenSSL OpenSSL>=1.1.1<1.1.1k
Debian Debian Linux=9.0
Debian Debian Linux=10.0
FreeBSD FreeBSD=12.2
and 202 more
bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonst...
FreeBSD FreeBSD<=11.2
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p12
and 43 more
A memory corruption vulnerability was found in the kernel function kern_getfsstat in MidnightBSD before 1.2.7 and 1.3 through 2020-08-19, and FreeBSD through 11.4, that allows an attacker to trigger a...
Midnightbsd Midnightbsd<1.2.7
Midnightbsd Midnightbsd>=1.3<=2020-08-19
FreeBSD FreeBSD<=11.4
In MidnightBSD before 1.2.6 and 1.3 before August 2020, and FreeBSD before 7, a NULL pointer dereference was found in the Linux emulation layer that allows attackers to crash the running kernel. Durin...
Midnightbsd Midnightbsd<1.2.6
Midnightbsd Midnightbsd>=1.3<=2020-08-19
FreeBSD FreeBSD<=7.0
OpenZFS before 2.0.0-rc1, when used on FreeBSD, misinterprets group permissions as user permissions, as demonstrated by mode 0770 being equivalent to mode 0777.
OpenZFS OpenZFS<=0.8.4
FreeBSD FreeBSD
OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories.
OpenZFS OpenZFS<=0.8.4
FreeBSD FreeBSD
FreeBSD Kernel sendmsg System Call Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p2
FreeBSD FreeBSD=11.3-p3
and 15 more
In FreeBSD 12.1-STABLE before r362166, 12.1-RELEASE before p8, 11.4-STABLE before r362167, 11.4-RELEASE before p2, and 11.3-RELEASE before p12, missing length validation code common to mulitple USB ne...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p11
FreeBSD FreeBSD=11.3-p2
FreeBSD FreeBSD=11.3-p3
and 15 more
In FreeBSD 12.1-STABLE before r362281, 11.4-STABLE before r362281, and 11.4-RELEASE before p1, long values in the user-controlled PATH environment variable cause posix_spawnp to write beyond the end o...
FreeBSD FreeBSD=11.4
FreeBSD FreeBSD=11.4-beta1
FreeBSD FreeBSD=12.1
In FreeBSD 12.1-STABLE before r359565, 12.1-RELEASE before p7, 11.4-STABLE before r362975, 11.4-RELEASE before p1, and 11.3-RELEASE before p11, missing synchronization in the IPV6_2292PKTOPTIONS socke...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p10
FreeBSD FreeBSD=11.3-p2
FreeBSD FreeBSD=11.3-p3
FreeBSD FreeBSD=11.3-p4
and 15 more
In FreeBSD 12.1-STABLE before r361918, 12.1-RELEASE before p6, 11.4-STABLE before r361919, 11.3-RELEASE before p10, and 11.4-RC2 before p1, an invalid memory location may be used for HID items if the ...
FreeBSD FreeBSD=11.3
FreeBSD FreeBSD=11.3-p1
FreeBSD FreeBSD=11.3-p2
FreeBSD FreeBSD=11.3-p3
FreeBSD FreeBSD=11.3-p4
FreeBSD FreeBSD=11.3-p5
and 13 more
AnyDesk before 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited for remote code execution.
AnyDesk AnyDesk<5.5.3
FreeBSD FreeBSD
Linux Linux kernel

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203