FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-09 08:42:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
fefcd340-624f-11ee-8e38-002590c1f29c	FreeBSD -- msdosfs data disclosure Problem Description: In certain cases using the truncate or ftruncate system call to extend a file size populates the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes. Impact: A user with write access to files on a msdosfs file system may be able to read unintended data (for example, from a previously deleted file). Discovery 2023-10-03 Entry 2023-10-04 FreeBSD-kernel ge 13.2 lt 13.2_4 ge 12.4 lt 12.4_6 CVE-2023-5368 SA-23:12.msdosfs

VuXML ID

Description

fefcd340-624f-11ee-8e38-002590c1f29c

FreeBSD -- msdosfs data disclosure

Problem Description:

In certain cases using the truncate or ftruncate system call to extend a file size populates the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes.

Impact:

A user with write access to files on a msdosfs file system may be able to read unintended data (for example, from a previously deleted file).

Discovery 2023-10-03
Entry 2023-10-04
FreeBSD-kernel

ge 13.2 lt 13.2_4

ge 12.4 lt 12.4_6

CVE-2023-5368
SA-23:12.msdosfs