This page displays vulnerability information about FreeBSD Ports.
The last vuln.xml file processed by FreshPorts is:
nothing found there
List all Vulnerabilities, by package
List all Vulnerabilities, by date
These are the vulnerabilities relating to the commit you have selected:
|9eb01384-d793-11ea-88f8-901b0ef719ab||FreeBSD -- Potential memory corruption in USB network device drivers|
A missing length validation code common to these three drivers means that a malicious USB device could write beyond the end of an allocated network packet buffer.
An attacker with physical access to a USB port and the ability to bring a network interface up may be able to use a specially crafted USB device to gain kernel or user-space code execution.
ge 12.1 lt 12.1_8
ge 11.4 lt 11.4_2
ge 11.3 lt 11.3_12