This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2025-07-18 21:06:46 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
| VuXML ID | Description |
|---|---|
| 8d1f9adf-6b4f-11ef-9a62-002590c1f29c | FreeBSD -- Multiple vulnerabilities in libnvProblem Description:CVE-2024-45287 is a vulnerability that affects both the kernel and userland. A malicious value of size in a structure of packed libnv can cause an integer overflow, leading to the allocation of a smaller buffer than required for the parsed data. CVE-2024-45288 is a vulnerability that affects both the kernel and userland. A missing null-termination character in the last element of an nvlist array string can lead to writing outside the allocated buffer. Impact:It is possible for an attacker to overwrite portions of memory (in userland or the kernel) as the allocated buffer might be smaller than the data received from a malicious process. This vulnerability could result in privilege escalation or cause a system panic. Discovery 2024-09-04 Entry 2024-09-05 FreeBSD-kernel >= 14.1 lt 14.1_4 >= 14.0 lt 14.0_10 >= 13.3 lt 13.3_6 FreeBSD >= 14.1 lt 14.1_4 >= 14.0 lt 14.0_10 >= 13.3 lt 13.3_6 CVE-2024-45287 CVE-2024-45288 SA-24:09.libnv |