FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0cc7e547-6a0a-11ea-92ab-00163e433440FreeBSD -- Incorrect user-controlled pointer use in epair

Problem Description:

Incorrect use of a potentially user-controlled pointer in the kernel allowed vnet jailed users to panic the system and potentially execute aribitrary code in the kernel.

Impact:

Users with root level access (or the PRIV_NET_IFCREATE privilege) can panic the system, or potentially escape the jail or execute arbitrary code with kernel priviliges.


Discovery 2020-03-19
Entry 2020-03-19
FreeBSD-kernel
ge 12.1 lt 12.1_3

ge 11.3 lt 11.3_7

CVE-2020-7452
SA-20:07.epair