Vulnerabilities > Freebsd

DATE CVE VULNERABILITY TITLE RISK
2021-06-04 CVE-2020-7469 USE After Free vulnerability in Freebsd 11.4/12.1/12.2
In FreeBSD 12.2-STABLE before r367402, 11.4-STABLE before r368202, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 the handler for a routing option caches a pointer into the packet buffer holding the ICMPv6 message.
network
low complexity
freebsd CWE-416
5.0
2021-05-28 CVE-2021-29628 Incorrect Authorization vulnerability in Freebsd 12.2/13.0
In FreeBSD 13.0-STABLE before n245764-876ffe28796c, 12.2-STABLE before r369857, 13.0-RELEASE before p1, and 12.2-RELEASE before p7, a system call triggering a fault could cause SMAP protections to be disabled for the duration of the system call.
network
low complexity
freebsd CWE-863
5.0
2021-05-28 CVE-2021-29629 Improper Input Validation vulnerability in Freebsd 11.4/12.2/13.0
In FreeBSD 13.0-STABLE before n245765-bec0d2c9c841, 12.2-STABLE before r369859, 11.4-STABLE before r369866, 13.0-RELEASE before p1, 12.2-RELEASE before p7, and 11.4-RELEASE before p10, missing message validation in libradius(3) could allow malicious clients or servers to trigger denial of service in vulnerable servers or clients respectively.
network
low complexity
freebsd CWE-20
5.0
2021-04-07 CVE-2021-29627 USE After Free vulnerability in Freebsd
In FreeBSD 13.0-STABLE before n245050, 12.2-STABLE before r369525, 13.0-RC4 before p0, and 12.2-RELEASE before p6, listening socket accept filters implementing the accf_create callback incorrectly freed a process supplied argument string.
local
low complexity
freebsd CWE-416
7.2
2021-04-07 CVE-2021-29626 USE After Free vulnerability in Freebsd
In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11.4-STABLE before r369559, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, copy-on-write logic failed to invalidate shared memory page mappings between multiple processes allowing an unprivileged process to maintain a mapping after it is freed, allowing the process to read private data belonging to other processes or the kernel.
local
low complexity
freebsd CWE-416
2.1
2021-04-07 CVE-2020-25584 Race Condition vulnerability in Freebsd
In FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, a superuser inside a FreeBSD jail configured with the non-default allow.mount permission could cause a race condition between the lookup of ".." and remounting a filesystem, allowing access to filesystem hierarchy outside of the jail.
local
high complexity
freebsd CWE-362
6.2
2021-03-29 CVE-2020-25583 Classic Buffer Overflow vulnerability in Freebsd
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 when processing a DNSSL option, rtsold(8) decodes domain name labels per an encoding specified in RFC 1035 in which the first octet of each label contains the label's length.
network
low complexity
freebsd CWE-120
critical
10.0
2021-03-29 CVE-2020-25577 Classic Buffer Overflow vulnerability in Freebsd 11.4/12.1/12.2
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 rtsold(8) does not verify that the RDNSS option does not extend past the end of the received packet before processing its contents.
network
low complexity
freebsd CWE-120
critical
10.0
2021-03-26 CVE-2020-7468 Improper Handling of Exceptional Conditions vulnerability in Freebsd
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5).
network
low complexity
freebsd CWE-755
critical
9.0
2021-03-26 CVE-2020-7467 Improper Privilege Management vulnerability in Freebsd
In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped.
local
low complexity
freebsd CWE-269
7.2