This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
2c948527-d823-11e6-9171-14dae9d210b8 | FreeBSD -- OpenSSH multiple vulnerabilitiesProblem Description:The ssh-agent(1) agent supports loading a PKCS#11 module from outside a trusted whitelist. An attacker can request loading of a PKCS#11 module across forwarded agent-socket. [CVE-2016-10009] When privilege separation is disabled, forwarded Unix domain sockets would be created by sshd(8) with the privileges of 'root' instead of the authenticated user. [CVE-2016-10010] Impact:A remote attacker who have control of a forwarded agent-socket on a remote system and have the ability to write files on the system running ssh-agent(1) agent can run arbitrary code under the same user credential. Because the attacker must already have some control on both systems, it is relatively hard to exploit this vulnerability in a practical attack. [CVE-2016-10009] When privilege separation is disabled (on FreeBSD, privilege separation is enabled by default and has to be explicitly disabled), an authenticated attacker can potentially gain root privileges on systems running OpenSSH server. [CVE-2016-10010] Discovery 2017-01-11 Entry 2017-01-11 Modified 2017-01-13 openssh-portable < 7.3.p1_5,1 FreeBSD ge 11.0 lt 11.0_7 ge 10.3 lt 10.3_16 CVE-2016-10009 CVE-2016-10010 SA-17:01.openssh |
2a1b931f-2b86-11ec-8acd-c80aa9043978 | OpenSSH -- OpenSSH 6.2 through 8.7 failed to correctly initialise supplemental groups when executing an AuthorizedKeysCommand or AuthorizedPrincipalsCommand OpenBSD Project reports:
Discovery 2021-09-26 Entry 2021-10-12 openssh-portable openssh-portable-hpn openssh-portable-gssapi ge 6.2.p1,1 lt 8.7.p1_2,1 CVE-2021-41617 https://www.openssh.com/txt/release-8.8 |
e4644df8-e7da-11e5-829d-c80aa9043978 | openssh -- command injection when X11Forwarding is enabled The OpenSSH project reports:
Discovery 2016-03-11 Entry 2016-03-11 Modified 2016-08-09 openssh-portable < 7.2.p2,1 FreeBSD ge 10.2 lt 10.2_14 ge 10.1 lt 10.1_31 ge 9.3 lt 9.3_39 http://www.openssh.com/txt/x11fwd.adv CVE-2016-3115 SA-16:14.openssh |
adccefd1-7080-11e6-a2cb-c80aa9043978 | openssh -- sshd -- remote valid user discovery and PAM /bin/login attack The OpenSSH project reports:
Discovery 2016-08-01 Entry 2016-09-01 openssh-portable < 7.3.p1,1 http://www.openssh.com/txt/release-7.3 CVE-2016-6210 CVE-2015-8325 |