CVE search results

1 – 10 of 16 results

Detailed view

Sort by:

CVE-2010-4816

Medium priority

Not affected

It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd/popen.c may lead to remote denial of service of the ftpd service.

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD through 10.1 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message.

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2012-4576

Medium priority

Ignored

FreeBSD: Input Validation Flaw allows local users to gain elevated privileges

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2011-2480

Low priority

Ignored

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl allows a local unprivileged user...

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2015-1414

Medium priority

Ignored

Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect...

3 affected packages

kfreebsd-10, kfreebsd-8, kfreebsd-9

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-10	—	—	—	—	—
kfreebsd-8	—	—	—	—	—
kfreebsd-9	—	—	—	—	—

CVE-2014-8613

Medium priority

Ignored

The sctp module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted RE_CONFIG chunk.

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2014-8612

Medium priority

Ignored

Multiple array index errors in the Stream Control Transmission Protocol (SCTP) module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to (1) gain privileges via the stream id to the...

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2014-8476

Medium priority

Ignored

The setlogin function in FreeBSD 8.4 through 10.1-RC4 does not initialize the buffer used to store the login name, which allows local users to obtain sensitive information from kernel memory via a call to getlogin, which returns...

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2014-3873

Medium priority

Ignored

The ktrace utility in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 9.3-BETA1 before p1 uses an incorrect page fault kernel trace entry size, which allows local users to obtain sensitive information from...

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

CVE-2013-5209

Medium priority

Ignored

The sctp_send_initiate_ack function in sys/netinet/sctp_output.c in the SCTP implementation in the kernel in FreeBSD 8.3 through 9.2-PRERELEASE does not properly initialize the state-cookie data structure, which allows remote...

1 affected package

kfreebsd-8

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kfreebsd-8	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports

CVE-2010-4816

CVE-2015-2923

CVE-2012-4576

CVE-2011-2480

CVE-2015-1414

CVE-2014-8613

CVE-2014-8612

CVE-2014-8476

CVE-2014-3873

CVE-2013-5209