FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 19:33:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
31ad2f10-7711-11eb-b87a-901b0ef719ab	FreeBSD -- jail_remove(2) fails to kill all jailed processes Problem Description: Due to a race condition in the jail_remove(2) implementation, it may fail to kill some of the processes. Impact: A process running inside a jail can avoid being killed during jail termination. If a jail is subsequently started with the same root path, a lingering jailed process may be able to exploit the window during which a devfs filesystem is mounted but the jail's devfs ruleset has not been applied, to access device nodes which are ordinarily inaccessible. If the process is privileged, it may be able to escape the jail and gain full access to the system. Discovery 2021-02-24 Entry 2021-02-25 FreeBSD-kernel ge 12.2 lt 12.2_4 ge 11.4 lt 11.4_8 CVE-2020-25581 SA-21:04.jail_remove

VuXML ID

Description

31ad2f10-7711-11eb-b87a-901b0ef719ab

FreeBSD -- jail_remove(2) fails to kill all jailed processes

Problem Description:

Due to a race condition in the jail_remove(2) implementation, it may fail to kill some of the processes.

Impact:

A process running inside a jail can avoid being killed during jail termination. If a jail is subsequently started with the same root path, a lingering jailed process may be able to exploit the window during which a devfs filesystem is mounted but the jail's devfs ruleset has not been applied, to access device nodes which are ordinarily inaccessible. If the process is privileged, it may be able to escape the jail and gain full access to the system.

Discovery 2021-02-24
Entry 2021-02-25
FreeBSD-kernel

ge 12.2 lt 12.2_4

ge 11.4 lt 11.4_8

CVE-2020-25581
SA-21:04.jail_remove