| 2024-11-13 |
FreeBSD -- Certificate revocation list fetch(1) option fails |
| FreeBSD -- Multiple issues in the bhyve hypervisor |
| 2024-09-20 |
FreeBSD -- bhyve(8) out-of-bounds read access via XHCI emulation |
| FreeBSD -- Integer overflow in libnv |
| 2024-09-15 |
OpenSSH -- Pre-authentication async signal safety issue |
| 2024-09-05 |
FreeBSD -- bhyve(8) privileged guest escape via TPM device passthrough |
| FreeBSD -- bhyve(8) privileged guest escape via USB controller |
| FreeBSD -- Multiple vulnerabilities in libnv |
| FreeBSD -- umtx Kernel panic or Use-After-Free |
| 2024-09-03 |
OpenSSL -- Multiple vulnerabilities |
| 2024-07-01 |
OpenSSH -- Race condition resulting in potential remote code execution |
| 2024-02-14 |
FreeBSD -- bhyveload(8) host file access |
| 2024-02-13 |
DNSSEC validators -- denial-of-service/CPU exhaustion from KeyTrap and NSEC3 vulnerabilities |
| 2024-01-02 |
FreeBSD -- Prefix Truncation Attack in the SSH protocol |
| 2023-11-08 |
FreeBSD -- Incorrect libcap_net limitation list manipulation |
| FreeBSD -- libc stdio buffer overflow |
| 2023-08-31 |
FreeBSD -- bhyve privileged guest escape via fwctl |
| FreeBSD -- Multiple vulnerabilities in Heimdal |
| FreeBSD -- Multiple vulnerabilities in OpenSSL |
| FreeBSD -- Network authentication attack via pam_krb5 |
| FreeBSD -- Network authentication attack via pam_krb5 |
| FreeBSD -- OpenSSH pre-authentication double free |
| FreeBSD -- Potential remote code execution via ssh-agent forwarding |
| FreeBSD -- ssh-add does not honor per-hop destination constraints |
| FreeBSD -- Stack overflow in ping(8) |
| 2022-08-31 |
FreeBSD -- zlib heap buffer overflow |
| 2022-08-10 |
FreeBSD -- Missing bounds check in 9p message handling |
| 2022-04-07 |
FreeBSD -- zlib compression out-of-bounds write |
| 2022-03-16 |
OpenSSL -- Infinite loop in BN_mod_sqrt parsing certificates |
| 2022-02-02 |
FreeBSD -- vt console buffer overflow |
| 2021-08-25 |
FreeBSD -- libfetch out of bounds read |
| FreeBSD -- Missing error handling in bhyve(8) device models |
| FreeBSD -- Remote code execution in ggatec(8) |
| 2021-08-24 |
OpenSSL -- multiple vulnerabilities |
| 2021-05-27 |
FreeBSD -- Missing message validation in libradius(3) |
| 2021-03-26 |
OpenSSL -- Multiple vulnerabilities |
| 2021-02-25 |
FreeBSD -- login.access fails to apply rules |
| 2021-02-16 |
OpenSSL -- Multiple vulnerabilities |
| 2020-12-08 |
OpenSSL -- NULL pointer de-reference |
| 2020-12-02 |
FreeBSD -- Multiple vulnerabilities in rtsold |
| 2020-09-16 |
FreeBSD -- ftpd privilege escalation via ftpchroot feature |
| 2020-09-02 |
FreeBSD -- dhclient heap overflow |
| 2020-07-10 |
FreeBSD -- posix_spawnp(3) buffer overflow |
| 2020-06-10 |
several security issues in sqlite3 |
| 2020-05-22 |
unbound -- mutliple vulnerabilities |
| 2020-04-21 |
OpenSSL remote denial of service vulnerability |
| 2020-03-03 |
ntp -- Multiple vulnerabilities |
| 2020-01-29 |
FreeBSD -- libfetch buffer overflow |
| 2019-10-24 |
FreeBSD -- Insufficient message length validation in bsnmp library |
| FreeBSD -- Multiple vulnerabilities in bzip2 |
| 2019-07-30 |
FreeBSD -- iconv buffer overflow |
| FreeBSD -- telnet(1) client multiple vulnerabilities |
| 2019-04-23 |
FreeBSD -- EAP-pwd message reassembly issue with unexpected fragment |
| FreeBSD -- EAP-pwd missing commit validation |
| FreeBSD -- EAP-pwd side-channel attack |
| FreeBSD -- SAE confirm missing state validation |
| FreeBSD -- SAE side-channel attacks |
| 2019-03-07 |
ntp -- Crafted null dereference attack from a trusted source with an authenticated mode 6 packet |
| 2018-12-19 |
FreeBSD -- bootpd buffer overflow |
| 2018-12-10 |
FreeBSD -- Insufficient bounds checking in bhyve(8) device model |
| FreeBSD -- Multiple vulnerabilities in NFS server code |
| 2018-08-22 |
FreeBSD -- Unauthenticated EAPOL-Key Decryption Vulnerability |
| 2018-02-28 |
ntp -- multiple vulnerabilities |
| 2017-12-10 |
FreeBSD -- OpenSSL multiple vulnerabilities |
| 2017-12-06 |
FreeBSD -- OpenSSL multiple vulnerabilities |
| FreeBSD -- WPA2 protocol vulnerability |
| 2017-10-03 |
FreeBSD -- heimdal KDC-REP service name validation vulnerability |
| FreeBSD -- OpenSSH Denial of Service vulnerability |
| 2017-05-26 |
FreeBSD -- Multiple vulnerabilities of ntp |
| 2017-01-26 |
OpenSSL -- multiple vulnerabilities |
| 2017-01-12 |
BIND -- multiple vulnerabilities |
| 2017-01-11 |
FreeBSD -- OpenSSH multiple vulnerabilities |
| 2016-12-22 |
FreeBSD -- Multiple vulnerabilities of ntp |
| 2016-12-06 |
FreeBSD -- bhyve(8) virtual machine escape |
| FreeBSD -- link_ntoa(3) buffer overflow |
| FreeBSD -- Possible login(1) argument injection in telnetd(8) |
| 2016-11-02 |
BIND -- Remote Denial of Service vulnerability |
| FreeBSD -- OpenSSL Remote DoS vulnerability |
| 2016-10-29 |
FreeBSD -- OpenSSH Remote Denial of Service vulnerability |
| 2016-10-10 |
FreeBSD -- Heap overflow vulnerability in bspatch |
| FreeBSD -- Multiple libarchive vulnerabilities |
| FreeBSD -- Multiple portsnap vulnerabilities |
| 2016-09-28 |
BIND -- Remote Denial of Service vulnerability |
| 2016-09-26 |
OpenSSL -- multiple vulnerabilities |
| 2016-09-22 |
OpenSSL -- multiple vulnerabilities |
| 2016-08-11 |
FreeBSD -- bsnmpd remote denial of service vulnerability |
| FreeBSD -- Buffer overflow in stdio |
| FreeBSD -- Denial of service attack against sshd(8) |
| FreeBSD -- devfs rules not applied by default for jails |
| FreeBSD -- Heap vulnerability in bspatch |
| FreeBSD -- iconv(3) NULL pointer dereference and out-of-bounds array access |
| FreeBSD -- Incorrect error handling in PAM policy parser |
| FreeBSD -- Insecure default GELI keyfile permissions |
| FreeBSD -- Insecure default snmpd.config permissions |
| FreeBSD -- Multiple integer overflows in expat (libbsdxml) XML parser |
| FreeBSD -- Multiple ntp vulnerabilities |
| FreeBSD -- Multiple OpenSSL vulnerabilities |
| FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3) |
| FreeBSD -- Remote command execution in ftp(1) |
| FreeBSD -- routed(8) remote denial of service vulnerability |
| FreeBSD -- routed(8) remote denial of service vulnerability |
| FreeBSD -- rpcbind(8) remote denial of service [REVISED] |
| FreeBSD -- rtsold(8) remote buffer overflow vulnerability |
| FreeBSD -- sendmail improper close-on-exec flag handling |
| FreeBSD -- shell injection vulnerability in patch(1) |
| FreeBSD -- shell injection vulnerability in patch(1) |
| 2016-05-03 |
OpenSSL -- multiple vulnerabilities |
| 2016-04-27 |
ntp -- multiple vulnerabilities |
| 2016-03-28 |
bind -- denial of service vulnerability |
| bind -- denial of service vulnerability |
| 2016-03-11 |
openssh -- command injection when X11Forwarding is enabled |
| 2016-01-28 |
openssl -- multiple vulnerabilities |
| 2016-01-22 |
bind -- denial of service vulnerability |
| 2016-01-21 |
ntp -- multiple vulnerabilities |
| 2016-01-18 |
libarchive -- multiple vulnerabilities |
| 2016-01-14 |
openssh -- information disclosure |
| 2016-01-08 |
ntp -- denial of service vulnerability |
| 2015-12-16 |
bind -- multiple vulnerabilities |
| 2015-12-05 |
openssl -- multiple vulnerabilities |
| 2015-10-21 |
ntp -- 13 low- and medium-severity vulnerabilities |
| 2015-09-03 |
bind -- denial of service vulnerability |
| 2015-08-21 |
OpenSSH -- PAM vulnerabilities |
| 2015-07-28 |
bind -- denial of service vulnerability |
| 2015-07-27 |
OpenSSH -- MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices |
| 2015-07-07 |
bind -- denial of service vulnerability |
| 2015-06-11 |
openssl -- multiple vulnerabilities |
| 2015-04-07 |
ntp -- multiple vulnerabilities |
| 2015-03-19 |
OpenSSL -- multiple vulnerabilities |
| 2015-02-23 |
bind -- denial of service vulnerability |
| 2015-01-08 |
OpenSSL -- multiple vulnerabilities |
| 2015-01-02 |
file -- multiple vulnerabilities |
| 2014-12-11 |
bind -- denial of service vulnerability |
| 2014-12-09 |
unbound -- can be tricked into following an endless series of delegations, this consumes a lot of resources |
| 2014-10-15 |
OpenSSL -- multiple vulnerabilities |
| 2014-08-06 |
OpenSSL -- multiple vulnerabilities |
| 2014-06-05 |
OpenSSL -- multiple vulnerabilities |
| 2014-05-03 |
OpenSSL -- NULL pointer dereference / DoS |
| 2014-04-23 |
OpenSSL -- Remote Data Injection / DoS |
| 2014-04-11 |
OpenSSL -- Local Information Disclosure |
| 2014-04-07 |
OpenSSL -- Remote Information Disclosure |
| 2014-01-14 |
ntpd DRDoS / Amplification Attack using ntpdc monlist command |
| 2014-01-13 |
bind -- denial of service vulnerability |
| 2013-09-19 |
FreeBSD -- Cross-mount links between nullfs(5) mounts |
| FreeBSD -- Insufficient credential checks in network ioctl(2) |
| 2013-07-26 |
bind -- denial of service vulnerability |
| 2013-06-18 |
FreeBSD -- Privilege escalation via mmap |
| 2013-04-29 |
FreeBSD -- NFS remote denial of service |
| 2013-04-02 |
FreeBSD -- BIND remote denial of service |
| FreeBSD -- OpenSSL multiple vulnerabilities |
| 2013-02-21 |
FreeBSD -- BIND remote DoS with deliberately crafted DNS64 query |
| FreeBSD -- glob(3) related resource exhaustion |
| 2012-11-24 |
FreeBSD -- Insufficient message length validation for EAP-TLS messages |
| FreeBSD -- Linux compatibility layer input validation error |
| FreeBSD -- Multiple Denial of Service vulnerabilities with named(8) |
| 2012-08-07 |
FreeBSD -- named(8) DNSSEC validation Denial of Service |
| 2012-06-27 |
FreeBSD -- Incorrect crypt() hashing |
| FreeBSD -- Incorrect handling of zero-length RDATA fields in named(8) |
| FreeBSD -- OpenSSL multiple vulnerabilities |
| FreeBSD -- Privilege escalation when returning from kernel |
| 2012-01-29 |
FreeBSD -- Buffer overflow in handling of UNIX socket addresses |
| FreeBSD -- errors handling corrupt compress file in compress(1) and gzip(1) |
| FreeBSD -- Network ACL mishandling in mountd(8) |
| FreeBSD -- pam_ssh improperly grants access when user account has unencrypted SSH private keys |
| FreeBSD -- pam_ssh() does not validate service names |
| 2011-12-26 |
krb5-appl -- telnetd code execution vulnerability |
| 2011-12-23 |
proftpd -- arbitrary code execution vulnerability with chroot |
| 2011-11-16 |
BIND -- Remote DOS |
| 2011-06-04 |
BIND -- Large RRSIG RRsets and Negative Caching DoS |
| 2010-10-24 |
FreeBSD -- BIND named(8) cache poisoning with DNSSEC validation |
| FreeBSD -- Improper environment sanitization in rtld(1) |
| FreeBSD -- Inappropriate directory permissions in freebsd-update(8) |
| FreeBSD -- Insufficient environment sanitization in jail(8) |
| FreeBSD -- Integer overflow in bzip2 decompression |
| FreeBSD -- Lost mbuf flag resulting in data corruption |
| FreeBSD -- ntpd mode 7 denial of service |
| FreeBSD -- OPIE off-by-one stack overflow |
| FreeBSD -- SSL protocol flaw |
| FreeBSD -- Unvalidated input in nfsclient |
| FreeBSD -- ZFS ZIL playback with insecure permissions |
| 2009-10-06 |
FreeBSD -- Devfs / VFS NULL pointer race condition |
| FreeBSD -- kqueue pipe race conditions |
| 2009-08-01 |
BIND -- Dynamic update message remote DoS |
| 2009-05-07 |
FreeBSD -- remotely exploitable crash in OpenSSL |
| 2009-01-05 |
FreeBSD -- arc4random(9) predictable sequence vulnerability |
| FreeBSD -- Cross-site request forgery in ftpd(8) |
| FreeBSD -- IPv6 Neighbor Discovery Protocol routing vulnerability |
| FreeBSD -- netgraph / bluetooth privilege escalation |
| 2008-09-05 |
FreeBSD -- amd64 swapgs local privilege escalation |
| FreeBSD -- nmount(2) local arbitrary code execution |
| FreeBSD -- Remote kernel panics on IPv6 connections |
| 2008-07-13 |
FreeBSD -- DNS cache poisoning |
| 2007-08-02 |
FreeBSD -- Buffer overflow in tcpdump(1) |
| FreeBSD -- Predictable query ids in named(8) |
| 2007-05-23 |
FreeBSD -- heap overflow in file(1) |
| 2007-04-28 |
FreeBSD -- IPv6 Routing Header 0 is dangerous |
| 2007-02-27 |
bind -- Multiple Denial of Service vulnerabilities |
| FreeBSD -- Jail rc.d script privilege escalation |
| FreeBSD -- Kernel memory disclosure in firewire(4) |
| gtar -- name mangling symlink vulnerability |
| 2007-02-26 |
OpenSSL -- Multiple problems in crypto(3) |
| 2006-12-19 |
bind9 -- Denial of Service in named(8) |
| gzip -- multiple vulnerabilities |
| openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3) |
| 2006-09-30 |
openssh -- multiple vulnerabilities |
| 2006-08-23 |
sppp -- buffer overflow vulnerability |
| 2006-06-14 |
sendmail -- Incorrect multipart message handling |
| 2006-06-09 |
smbfs -- chroot escape |
| ypserv -- Inoperative access controls in ypserv |
| 2006-04-19 |
FreeBSD -- FPU information disclosure |
| 2006-03-24 |
ipsec -- reply attack vulnerability |
| OPIE -- arbitrary password change |
| sendmail -- race condition vulnerability |
| 2006-03-12 |
nfs -- remote denial of service |
| openssh -- remote denial of service |
| 2006-02-14 |
FreeBSD -- Infinite loop in SACK handling |
| FreeBSD -- Local kernel memory disclosure |
| IEEE 802.11 -- buffer overflow |
| ipfw -- IP fragment denial of service |
| pf -- IP fragment handling panic |
| 2006-01-27 |
cpio -- multiple vulnerabilities |
| cvsbug -- race condition |
| ee -- temporary file privilege escalation |
| texindex -- temporary file privilege escalation |
| 2005-10-12 |
openssl -- potential SSL 2.0 rollback |
| 2005-09-03 |
bind9 -- denial of service |
| 2005-08-05 |
devfs -- ruleset bypass |
| ipsec -- Incorrect key usage in AES-XCBC-MAC |
| zlib -- buffer overflow vulnerability |
| 2005-07-06 |
zlib -- buffer overflow vulnerability |
| 2005-06-29 |
bzip2 -- denial of service and permission race vulnerabilities |
| kernel -- ipfw packet matching errors with address tables |
| kernel -- TCP connection stall denial of service |
| 2005-06-18 |
gzip -- directory traversal and permission race vulnerabilities |
| tcpdump -- infinite loops in protocol decoding |
| 2005-05-13 |
kernel -- information disclosure when using HTT |
| 2004-11-18 |
Overflow error in fetch |
| 2004-10-04 |
Boundary checking errors in syscons |
| 2004-08-17 |
cvs -- numerous vulnerabilities |
| tnftpd -- remotely exploitable vulnerability |
| 2004-06-30 |
Linux binary compatibility mode input validation error |
| 2004-06-07 |
jailed processes can manipulate host routing tables |
| 2004-05-26 |
buffer cache invalidation implementation issues |
| 2004-05-19 |
cvs pserver remote heap buffer overflow |
| 2004-05-05 |
heimdal kadmind remote heap buffer overflow |
| 2004-04-14 |
CVS path validation errors |
| 2004-04-07 |
jailed processes can attach to other jails |
| many out-of-sequence TCP packets denial-of-service |
| mksnap_ffs clears file system options |
| shmat reference counting bug |
| 2004-04-02 |
Incorrect cross-realm trust handling in Heimdal |
| 2004-03-31 |
tcpdump ISAKMP payload handling remote denial-of-service |
| 2004-03-29 |
setsockopt(2) IPv6 sockets input validation error |
| 2004-03-17 |
OpenSSL ChangeCipherSpec denial-of-service vulnerability |
| 2004-01-19 |
L2TP, ISAKMP, and RADIUS parsing vulnerabilities in tcpdump |
| 2003-12-12 |
bind8 negative cache poison attack |