FreeBSD 13.1 Patch 5
Approved changes feed: RSS · Atom
cpe:2.3:o:freebsd:freebsd:13.1:p5:*:*:*:*:*:*
part: o version: 13.1 update: p5
| Vendor | Freebsd (1e86ea60-a74f-5f45-ac35-3eb819c9e064) |
|---|---|
| Product | Freebsd (be9b20ed-2a20-5a94-a224-b1a6fdcacb17) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/freebsd/freebsd-src |
purl2cpe | 2026-06-01 10:12:45.165374 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-3494 |
vulnerable | 2026-06-08 06:09:39.725139 |
bhyve privileged guest escape via fwctl
The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process' memory. A bug in the state machine implementation can result in a buffer overflowing when copying this string. Malicious, privileged software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in the bhyve userspace process, which typically runs as root, mitigated by the capabilities assigned through the Capsicum sandbox available to the bhyve process.
Published: 2023-08-01T22:13:21.634Z
Updated: 2025-02-13T16:55:41.138Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3326 |
vulnerable | 2026-06-08 06:09:39.145276 |
Network authentication attack via pam_krb5
pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket (tgt) from the Kerberos KDC (Key Distribution Center) over the network, as a way to verify the password. However, if a keytab is not provisioned on the system, pam_krb5 has no way to validate the response from the KDC, and essentially trusts the tgt provided over the network as being valid. In a non-default FreeBSD installation that leverages pam_krb5 for authentication and does not have a keytab provisioned, an attacker that is able to control both the password and the KDC responses can return a valid tgt, allowing authentication to occur for any user on the system.
Published: 2023-06-22T16:37:51.360Z
Updated: 2024-12-05T17:45:19.729Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3107 |
vulnerable | 2026-06-08 06:09:38.551813 |
Remote denial of service in IPv6 fragment reassembly
A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field. This allows an attacker to trigger a kernel panic, resulting in a denial of service.
Published: 2023-08-01T22:01:07.584Z
Updated: 2025-07-09T13:45:34.790Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-0751 |
vulnerable | 2026-06-08 05:52:32.528956 |
GELI silently omits the keyfile if read from stdin
When GELI reads a key file from standard input, it does not reuse the key file to initialize multiple providers at once resulting in the second and subsequent devices silently using a NULL key as the user key file. If a user only uses a key file without a user passphrase, the master key is encrypted with an empty key file allowing trivial recovery of the master key.
Published: 2023-02-08T19:25:01.118Z
Updated: 2025-03-25T13:47:39.852Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.