This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-12 06:36:57 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
6a2cfcdc-9dea-11e6-a298-14dae9d210b8 | FreeBSD -- OpenSSH Remote Denial of Service vulnerabilityProblem Description:When processing the SSH_MSG_KEXINIT message, the server could allocate up to a few hundreds of megabytes of memory per each connection, before any authentication take place. Impact:A remote attacker may be able to cause a SSH server to allocate an excessive amount of memory. Note that the default MaxStartups setting on FreeBSD will limit the effectiveness of this attack. Discovery 2016-10-19 Entry 2016-10-29 Modified 2016-11-02 openssh-portable < 7.3p1_1 FreeBSD ge 11.0 lt 11.0_3 ge 10.3 lt 10.3_12 http://seclists.org/oss-sec/2016/q4/191 CVE-2016-8858 SA-16:33.openssh |