FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
45a95fdd-f680-11e9-a87f-a4badb2f4699FreeBSD -- Insufficient message length validation in bsnmp library

Problem Description:

A function extracting the length from type-length-value encoding is not properly validating the submitted length.

Impact:

A remote user could cause, for example, an out-of-bounds read, decoding of unrelated data, or trigger a crash of the software such as bsnmpd resulting in a denial of service.


Discovery 2019-08-06
Entry 2019-10-24
FreeBSD
ge 12.0 lt 12.0_9

ge 11.3 lt 11.3_2

ge 11.2 lt 11.2_13

CVE-2019-5610
SA-19:20.bsnmp