FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-09 05:46:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
5afcc9a4-7e04-11ee-8e38-002590c1f29c	FreeBSD -- libc stdio buffer overflow Problem Description: For line-buffered streams the __sflush() function did not correctly update the FILE object's write space member when the write(2) system call returns an error. Impact: Depending on the nature of an application that calls libc's stdio functions and the presence of errors returned from the write(2) system call (or an overridden stdio write routine) a heap buffer overfly may occur. Such overflows may lead to data corruption or the execution of arbitrary code at the privilege level of the calling program. Discovery 2023-11-08 Entry 2023-11-08 FreeBSD ge 13.2 lt 13.2_5 ge 12.4 lt 12.4_7 CVE-2023-5941 SA-23:15.stdio

VuXML ID

Description

5afcc9a4-7e04-11ee-8e38-002590c1f29c

FreeBSD -- libc stdio buffer overflow

Problem Description:

For line-buffered streams the __sflush() function did not correctly update the FILE object's write space member when the write(2) system call returns an error.

Impact:

Depending on the nature of an application that calls libc's stdio functions and the presence of errors returned from the write(2) system call (or an overridden stdio write routine) a heap buffer overfly may occur. Such overflows may lead to data corruption or the execution of arbitrary code at the privilege level of the calling program.

Discovery 2023-11-08
Entry 2023-11-08
FreeBSD

ge 13.2 lt 13.2_5

ge 12.4 lt 12.4_7

CVE-2023-5941
SA-23:15.stdio