Vulnerabilities > Freebsd > Freebsd > 2.2.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-04 | CVE-2018-17160 | Out-of-bounds Write vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bhyve host possibly permitting arbitrary code execution. | 10.0 |
| 2018-12-04 | CVE-2018-17159 | Resource Exhaustion vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check in the READDIRPLUS NFS request. | 7.8 |
| 2018-12-04 | CVE-2018-17158 | Integer Overflow or Wraparound vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error can occur when handling the client address length field in an NFSv4 request. | 7.8 |
| 2018-12-04 | CVE-2018-17157 | Integer Overflow or Wraparound vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error when handling opcodes can cause memory corruption by sending a specially crafted NFSv4 request. | 10.0 |
| 2018-11-28 | CVE-2018-17156 | Out-of-bounds Write vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl. | 4.3 |
| 2018-09-28 | CVE-2018-6925 | NULL Pointer Dereference vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r338986), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338985), and 10.4-RELEASE-p13, due to improper maintenance of IPv6 protocol control block flags through various failure paths, an unprivileged authenticated local user may be able to cause a NULL pointer dereference causing the kernel to crash. | 4.9 |
| 2018-09-28 | CVE-2018-17155 | Information Exposure vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r338983), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338984), and 10.4-RELEASE-p13, due to insufficient initialization of memory copied to userland in the getcontext and swapcontext system calls, small amounts of kernel memory may be disclosed to userland processes. | 2.1 |
| 2018-09-28 | CVE-2018-17154 | NULL Pointer Dereference vulnerability in Freebsd In FreeBSD before 11.2-STABLE(r338987), 11.2-RELEASE-p4, and 11.1-RELEASE-p15, due to insufficient memory checking in the freebsd4_getfsstat system call, a NULL pointer dereference can occur. | 4.9 |
| 2018-09-12 | CVE-2017-1085 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Freebsd In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. | 7.2 |
| 2018-09-12 | CVE-2017-1084 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Freebsd In FreeBSD before 11.2-RELEASE, multiple issues with the implementation of the stack guard-page reduce the protections afforded by the guard-page. | 7.8 |