CVE-2020-7455: FreeBSD Kernel NAT Out-Of-Bounds Read Information Disclosure Vulnerability
First published: Wed May 13 2020(Updated: )
In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amounts of kernel (for kernel NAT) or natd process space (for userspace natd).
Credit: secteam@freebsd.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeBSD FreeBSD | =11.3 | |
| FreeBSD FreeBSD | =11.3-p1 | |
| FreeBSD FreeBSD | =11.3-p2 | |
| FreeBSD FreeBSD | =11.3-p3 | |
| FreeBSD FreeBSD | =11.3-p4 | |
| FreeBSD FreeBSD | =11.3-p5 | |
| FreeBSD FreeBSD | =11.3-p6 | |
| FreeBSD FreeBSD | =11.3-p7 | |
| FreeBSD FreeBSD | =11.3-p8 | |
| FreeBSD FreeBSD | =11.4 | |
| FreeBSD FreeBSD | =11.4-beta1 | |
| FreeBSD FreeBSD | =12.1 | |
| FreeBSD FreeBSD | =12.1-p1 | |
| FreeBSD FreeBSD | =12.1-p2 | |
| FreeBSD FreeBSD | =12.1-p3 | |
| FreeBSD FreeBSD | =12.1-p4 | |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability CVE-2020-7455?
CVE-2020-7455 is a vulnerability in FreeBSD Kernel that allows local attackers to disclose sensitive information.
How severe is the vulnerability CVE-2020-7455?
The severity of CVE-2020-7455 is medium with a CVSS score of 5.5.
What software versions are affected by CVE-2020-7455?
CVE-2020-7455 affects FreeBSD Kernel versions 11.3 to 11.3-p8, 11.4 to 11.4-beta1, and 12.1 to 12.1-p4.
How can I exploit CVE-2020-7455?
To exploit CVE-2020-7455, local authentication is required.
Where can I find more information about CVE-2020-7455?
You can find more information about CVE-2020-7455 in the following references: [link1], [link2], [link3].
- collector/nvd-index
- agent/type
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/title
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-20-661
- alias/ZDI-CAN-10850
- alias/CVE-2020-7455
- agent/software-canonical-lookup
- agent/event
- agent/tags
- agent/trending
- vendor/freebsd
- canonical/freebsd freebsd
- version/freebsd freebsd/11.3
- version/freebsd freebsd/11.3-p1
- version/freebsd freebsd/11.3-p2
- version/freebsd freebsd/11.3-p3
- version/freebsd freebsd/11.3-p4
- version/freebsd freebsd/11.3-p5
- version/freebsd freebsd/11.3-p6
- version/freebsd freebsd/11.3-p7
- version/freebsd freebsd/11.3-p8
- version/freebsd freebsd/11.4
- version/freebsd freebsd/11.4-beta1
- version/freebsd freebsd/12.1
- version/freebsd freebsd/12.1-p1
- version/freebsd freebsd/12.1-p2
- version/freebsd freebsd/12.1-p3
- version/freebsd freebsd/12.1-p4
- canonical/freebsd kernel