FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
77b877aa-ec18-11ea-88f8-901b0ef719abFreeBSD -- SCTP socket use-after-free bug

Problem Description:

Due to improper handling in the kernel, a use-after-free bug can be triggered by sending large user messages from multiple threads on the same socket.

Impact:

Triggering the use-after-free situation may result in unintended kernel behaviour including a kernel panic.


Discovery 2020-09-02
Entry 2020-09-02
FreeBSD-kernel
ge 12.1 lt 12.1_9

ge 11.4 lt 11.4_3

ge 11.3 lt 11.3_13

CVE-2020-7463
SA-20:25.sctp