FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
78992249-947c-11ea-92ab-00163e433440	FreeBSD -- Memory disclosure vulnerability in libalias Problem Description: The FTP packet handler in libalias incorrectly calculates some packet lengths. This may result in disclosing small amounts of memory from the kernel (for the in-kernel NAT implementation) or from the process space for natd (for the userspace implementation). Impact: A malicious attacker could send specially constructed packets that exploit the erroneous calculation allowing the attacker to disclose small amount of memory either from the kernel (for the in-kernel NAT implementation) or from the process space for natd (for the userspace implementation). Discovery 2020-05-12 Entry 2020-05-12 FreeBSD-kernel ge 12.1 lt 12.1_5 ge 11.4 lt 11.4_1 ge 11.3 lt 11.3_9 CVE-2020-7455 SA-20:13.libalias

VuXML ID

Description

78992249-947c-11ea-92ab-00163e433440

FreeBSD -- Memory disclosure vulnerability in libalias

Problem Description:

The FTP packet handler in libalias incorrectly calculates some packet lengths. This may result in disclosing small amounts of memory from the kernel (for the in-kernel NAT implementation) or from the process space for natd (for the userspace implementation).

Impact:

A malicious attacker could send specially constructed packets that exploit the erroneous calculation allowing the attacker to disclose small amount of memory either from the kernel (for the in-kernel NAT implementation) or from the process space for natd (for the userspace implementation).

Discovery 2020-05-12
Entry 2020-05-12
FreeBSD-kernel

ge 12.1 lt 12.1_5

ge 11.4 lt 11.4_1

ge 11.3 lt 11.3_9

CVE-2020-7455
SA-20:13.libalias