FreeBSD
by FreeBSD
Source repositories
CVEs (510)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0440 | 0.03 | — | 0.03 | May 1, 2000 | NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option. | |||
| CVE-2000-0163 | 0.03 | — | 0.01 | Feb 21, 2000 | asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file. | |||
| CVE-1999-0823 | 0.03 | — | 0.01 | Dec 1, 1999 | Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument. | |||
| CVE-1999-0857 | 0.03 | — | 0.01 | Dec 1, 1999 | FreeBSD gdc program allows local users to modify files via a symlink attack. | |||
| CVE-1999-0820 | 0.03 | — | 0.01 | Dec 1, 1999 | FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands. | |||
| CVE-1999-0826 | 0.03 | — | 0.01 | Dec 1, 1999 | Buffer overflow in FreeBSD angband allows local users to gain privileges. | |||
| CVE-1999-0855 | 0.03 | — | 0.01 | Dec 1, 1999 | Buffer overflow in FreeBSD gdc program. | |||
| CVE-1999-0821 | 0.03 | — | 0.01 | Nov 8, 1999 | FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument. | |||
| CVE-1999-0912 | 0.03 | — | 0.01 | Sep 22, 1999 | FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files. | |||
| CVE-1999-0704 | 0.03 | — | 0.04 | Sep 16, 1999 | Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others. | |||
| CVE-2000-0489 | 0.03 | — | 0.01 | Sep 5, 1999 | FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers. | |||
| CVE-1999-1518 | 0.03 | — | 0.03 | Jul 15, 1999 | Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults. | |||
| CVE-1999-0405 | 0.03 | — | 0.01 | Feb 18, 1999 | A buffer overflow in lsof allows local users to obtain root privilege. | |||
| CVE-1999-1402 | 0.03 | — | 0.01 | May 17, 1997 | The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket. | |||
| CVE-1999-0040 | 0.03 | — | 0.01 | May 1, 1997 | Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. | |||
| CVE-1999-0130 | 0.03 | — | 0.01 | Nov 16, 1996 | Local users can start Sendmail in daemon mode and gain root privileges. | |||
| CVE-1999-0032 | 0.03 | — | 0.01 | Oct 25, 1996 | Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option. | |||
| CVE-1999-0023 | 0.03 | — | 0.01 | Jul 24, 1996 | Local user gains root privileges via buffer overflow in rdist, via lookup() function. | |||
| CVE-2024-45063 | 0.01 | — | 0.01 | Sep 5, 2024 | The function ctl_write_buffer incorrectly set a flag which resulted in a kernel Use-After-Free when a command finished processing. Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to achieve code execution on the host in the… | |||
| CVE-2024-7589 | 0.01 | — | 0.02 | Aug 11, 2024 | A signal handler in sshd(8) may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds (120 by default). This signal handler executes in the context of the sshd(8)'s privileged… |
- CVE-2000-0440May 1, 2000risk 0.03cvss —epss 0.03
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.
- CVE-2000-0163Feb 21, 2000risk 0.03cvss —epss 0.01
asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file.
- CVE-1999-0823Dec 1, 1999risk 0.03cvss —epss 0.01
Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument.
- CVE-1999-0857Dec 1, 1999risk 0.03cvss —epss 0.01
FreeBSD gdc program allows local users to modify files via a symlink attack.
- CVE-1999-0820Dec 1, 1999risk 0.03cvss —epss 0.01
FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands.
- CVE-1999-0826Dec 1, 1999risk 0.03cvss —epss 0.01
Buffer overflow in FreeBSD angband allows local users to gain privileges.
- CVE-1999-0855Dec 1, 1999risk 0.03cvss —epss 0.01
Buffer overflow in FreeBSD gdc program.
- CVE-1999-0821Nov 8, 1999risk 0.03cvss —epss 0.01
FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument.
- CVE-1999-0912Sep 22, 1999risk 0.03cvss —epss 0.01
FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files.
- CVE-1999-0704Sep 16, 1999risk 0.03cvss —epss 0.04
Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.
- CVE-2000-0489Sep 5, 1999risk 0.03cvss —epss 0.01
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.
- CVE-1999-1518Jul 15, 1999risk 0.03cvss —epss 0.03
Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults.
- CVE-1999-0405Feb 18, 1999risk 0.03cvss —epss 0.01
A buffer overflow in lsof allows local users to obtain root privilege.
- CVE-1999-1402May 17, 1997risk 0.03cvss —epss 0.01
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.
- CVE-1999-0040May 1, 1997risk 0.03cvss —epss 0.01
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
- CVE-1999-0130Nov 16, 1996risk 0.03cvss —epss 0.01
Local users can start Sendmail in daemon mode and gain root privileges.
- CVE-1999-0032Oct 25, 1996risk 0.03cvss —epss 0.01
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
- CVE-1999-0023Jul 24, 1996risk 0.03cvss —epss 0.01
Local user gains root privileges via buffer overflow in rdist, via lookup() function.
- CVE-2024-45063Sep 5, 2024risk 0.01cvss —epss 0.01
The function ctl_write_buffer incorrectly set a flag which resulted in a kernel Use-After-Free when a command finished processing. Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to achieve code execution on the host in the…
- CVE-2024-7589Aug 11, 2024risk 0.01cvss —epss 0.02
A signal handler in sshd(8) may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds (120 by default). This signal handler executes in the context of the sshd(8)'s privileged…
Page 9 of 26