FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
ff82610f-b309-11e9-a87f-a4badb2f4699	FreeBSD -- Kernel stack disclosure in UFS/FFS Problem Description: A bug causes up to three bytes of kernel stack memory to be written to disk as uninitialized directory entry padding. This data can be viewed by any user with read access to the directory. Additionally, a malicious user with write access to a directory can cause up to 254 bytes of kernel stack memory to be exposed. Impact: Some amount of the kernel stack is disclosed and written out to the filesystem. Discovery 2019-07-02 Entry 2019-07-30 FreeBSD-kernel ge 12.0 lt 12.0_7 ge 11.2 lt 11.2_11 CVE-2019-5601 SA-19:10.ufs

VuXML ID

Description

ff82610f-b309-11e9-a87f-a4badb2f4699

FreeBSD -- Kernel stack disclosure in UFS/FFS

Problem Description:

A bug causes up to three bytes of kernel stack memory to be written to disk as uninitialized directory entry padding. This data can be viewed by any user with read access to the directory. Additionally, a malicious user with write access to a directory can cause up to 254 bytes of kernel stack memory to be exposed.

Impact:

Some amount of the kernel stack is disclosed and written out to the filesystem.

Discovery 2019-07-02
Entry 2019-07-30
FreeBSD-kernel

ge 12.0 lt 12.0_7

ge 11.2 lt 11.2_11

CVE-2019-5601
SA-19:10.ufs