厂商或团体 freebsd 的搜索结果 (331)

CVE-2016-1887(发布:2016-05-25 11:59:03)NMP
CVSS7.2

[原文]Integer signedness error in the sockargs function in sys/kern/uipc_syscalls.c in FreeBSD 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to cause a denial of service (memory overwrite and kernel panic) or gain privileges via a negative buflen argument, which triggers a heap-based buffer overflow.

CVE-2016-1886(发布:2016-05-25 11:59:02)NMP
CVSS7.2

[原文]Integer signedness error in the genkbd_commonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory overwrite and kernel crash), or gain privileges via a negative value in the flen structure member in the arg argument in a SETFKEY ioctl call, which triggers a "two way heap and stack overflow."

CVE-2016-1885(发布:2016-04-11 22:00:06)NMP
CVSS4.9

[原文]Integer signedness error in the amd64_set_ldt function in sys/amd64/amd64/sys_machdep.c in FreeBSD 9.3 before p39, 10.1 before p31, and 10.2 before p14 allows local users to cause a denial of service (kernel panic) via an i386_set_ldt system call, which triggers a heap-based buffer overflow.

CVE-2016-1882(发布:2016-01-29 14:59:08)NM
CVSS7.8

[原文]FreeBSD 9.3 before p33, 10.1 before p26, and 10.2 before p9 allow remote attackers to cause a denial of service (kernel crash) via vectors related to creating a TCP connection with the TCP_MD5SIG and TCP_NOOPT socket options.

CVE-2016-1879(发布:2016-01-29 14:59:07)NM
CVSS7.8

[原文]The Stream Control Transmission Protocol (SCTP) module in FreeBSD 9.3 before p33, 10.1 before p26, and 10.2 before p9, when the kernel is configured for IPv6, allows remote attackers to cause a denial of service (assertion failure or NULL pointer dereference and kernel panic) via a crafted ICMPv6 packet.

CVE-2014-8611(发布:2015-09-18 06:59:00)NMCPS
CVSS6.9

[CNNVD]FreeBSD stdio 基于堆的缓冲区溢出漏洞--FreeBSD是由Core Team团队负责的FreeBSD项目中的一套类Unix自由操作系统,是经过BSD、386BSD和4.4BSD发展而来的类Unix的一个重要分支。stdio是一个标准的I/O库。 FreeBSD stdio中存在基于堆的缓冲区溢出漏洞。远程攻击者可利用该...

12345678下一页尾页 第1页 / 共56页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站