FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
22b41bc5-4279-11ea-b184-f8b156ac3ff9FreeBSD -- libfetch buffer overflow

Problem Description:

A programming error allows an attacker who can specify a URL with a username and/or password components to overflow libfetch(3) buffers.

Impact:

An attacker in control of the URL to be fetched (possibly via HTTP redirect) may cause a heap buffer overflow, resulting in program misbehavior or malicious code execution.


Discovery 2020-01-28
Entry 2020-01-29
FreeBSD
ge 12.1 lt 12.1_2

ge 12.0 lt 12.0_13

ge 11.3 lt 11.3_6

CVE-2020-7450
SA-20:01.libfetch