FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
31ad2f10-7711-11eb-b87a-901b0ef719abFreeBSD -- jail_remove(2) fails to kill all jailed processes

Problem Description:

Due to a race condition in the jail_remove(2) implementation, it may fail to kill some of the processes.

Impact:

A process running inside a jail can avoid being killed during jail termination. If a jail is subsequently started with the same root path, a lingering jailed process may be able to exploit the window during which a devfs filesystem is mounted but the jail's devfs ruleset has not been applied, to access device nodes which are ordinarily inaccessible. If the process is privileged, it may be able to escape the jail and gain full access to the system.


Discovery 2021-02-24
Entry 2021-02-25
FreeBSD-kernel
ge 12.2 lt 12.2_4

ge 11.4 lt 11.4_8

CVE-2020-25581
SA-21:04.jail_remove