Unrated severityNVD Advisory· Published Mar 26, 2021· Updated Aug 4, 2024
CVE-2020-7463
CVE-2020-7463
Description
In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FreeBSD/FreeBSDdescription
Patches
Vulnerability mechanics
References
13- seclists.org/fulldisclosure/2021/Apr/49mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Apr/50mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Apr/57mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Apr/58mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Apr/59mitremailing-listx_refsource_FULLDISC
- security.freebsd.org/advisories/FreeBSD-SA-20:25.sctp.ascmitrex_refsource_MISC
- support.apple.com/kb/HT212317mitrex_refsource_CONFIRM
- support.apple.com/kb/HT212318mitrex_refsource_CONFIRM
- support.apple.com/kb/HT212319mitrex_refsource_CONFIRM
- support.apple.com/kb/HT212321mitrex_refsource_CONFIRM
- support.apple.com/kb/HT212323mitrex_refsource_CONFIRM
- support.apple.com/kb/HT212324mitrex_refsource_CONFIRM
- support.apple.com/kb/HT212325mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.