FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8db74c04-d794-11ea-88f8-901b0ef719ab	FreeBSD -- sendmsg(2) privilege escalation Problem Description: When handling a 32-bit sendmsg(2) call, the compat32 subsystem copies the control message to be transmitted (if any) into kernel memory, and adjusts alignment of control message headers. The code which performs this work contained a time-of-check to time-of-use (TOCTOU) vulnerability which allows a malicious userspace program to modify control message headers after they were validated by the kernel. Impact: The TOCTOU bug can be exploited by an unprivileged malicious userspace program to trigger privilege escalation. Discovery 2020-08-05 Entry 2020-08-06 FreeBSD-kernel ge 12.1 lt 12.1_8 ge 11.4 lt 11.4_2 ge 11.3 lt 11.3_12 CVE-2020-7460 SA-20:23.sendmsg

VuXML ID

Description

8db74c04-d794-11ea-88f8-901b0ef719ab

FreeBSD -- sendmsg(2) privilege escalation

Problem Description:

When handling a 32-bit sendmsg(2) call, the compat32 subsystem copies the control message to be transmitted (if any) into kernel memory, and adjusts alignment of control message headers. The code which performs this work contained a time-of-check to time-of-use (TOCTOU) vulnerability which allows a malicious userspace program to modify control message headers after they were validated by the kernel.

Impact:

The TOCTOU bug can be exploited by an unprivileged malicious userspace program to trigger privilege escalation.

Discovery 2020-08-05
Entry 2020-08-06
FreeBSD-kernel

ge 12.1 lt 12.1_8

ge 11.4 lt 11.4_2

ge 11.3 lt 11.3_12

CVE-2020-7460
SA-20:23.sendmsg