FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
c11ee146-c266-11ea-8659-901b0ef719abFreeBSD -- IPv6 socket option race condition and use after free

Problem Description:

The IPV6_2292PKTOPTIONS set handler was missing synchronization, so racing accesses could modify freed memory.

Impact:

A malicious user application could trigger memory corruption, leading to privilege escalation.


Discovery 2020-07-09
Entry 2020-07-10
FreeBSD-kernel
ge 12.1 lt 12.1_7

ge 11.4 lt 11.4_1

ge 11.3 lt 11.3_11

CVE-2020-7457
SA-20:20.ipv6