This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
31ad2f10-7711-11eb-b87a-901b0ef719ab | FreeBSD -- jail_remove(2) fails to kill all jailed processesProblem Description:Due to a race condition in the jail_remove(2) implementation, it may fail to kill some of the processes. Impact:A process running inside a jail can avoid being killed during jail termination. If a jail is subsequently started with the same root path, a lingering jailed process may be able to exploit the window during which a devfs filesystem is mounted but the jail's devfs ruleset has not been applied, to access device nodes which are ordinarily inaccessible. If the process is privileged, it may be able to escape the jail and gain full access to the system. Discovery 2021-02-24 Entry 2021-02-25 FreeBSD-kernel ge 12.2 lt 12.2_4 ge 11.4 lt 11.4_8 CVE-2020-25581 SA-21:04.jail_remove |