FreeBSD 10.3
Approved changes feed: RSS · Atom
cpe:2.3:o:freebsd:freebsd:10.3:*:*:*:*:*:*:*
part: o version: 10.3 update: *
| Vendor | Freebsd (1e86ea60-a74f-5f45-ac35-3eb819c9e064) |
|---|---|
| Product | Freebsd (be9b20ed-2a20-5a94-a224-b1a6fdcacb17) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/freebsd/freebsd-src |
purl2cpe | 2026-06-01 10:12:45.149453 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-7183 |
vulnerable | 2026-06-08 05:11:55.119986 |
Details available
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
Published: 2018-03-08T20:00:00.000Z
Updated: 2024-08-05T06:24:11.482Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-1081 |
vulnerable | 2026-06-08 05:09:12.759333 |
Details available
In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling.
Published: 2018-04-10T13:00:00.000Z
Updated: 2024-09-16T20:12:49.594Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-6559 |
vulnerable | 2026-06-08 05:08:02.768165 |
The BSD libc library's link_ntoa() function may be vulnerable to a classic buffer overflow
Improper bounds checking of the obuf variable in the link_ntoa() function in linkaddr.c of the BSD libc library may allow an attacker to read or write from memory. The full impact and severity depends on the method of exploit and how the library is used by applications. According to analysis by FreeBSD developers, it is very unlikely that applications exist that utilize link_ntoa() in an exploitable manner, and the CERT/CC is not aware of any proof of concept. A blog post describes the functionality of link_ntoa() and points out that none of the base utilities use this function in an exploitable manner. For more information, please see FreeBSD Security Advisory SA-16:37.
Published: 2018-07-13T20:00:00.000Z
Updated: 2024-08-06T01:36:29.410Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-5766 |
vulnerable | 2026-06-08 05:07:57.737268 |
Details available
Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image.
Published: 2016-08-07T10:00:00.000Z
Updated: 2024-08-06T01:15:09.075Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-1889 |
vulnerable | 2026-06-08 05:07:32.166779 |
Details available
Integer overflow in the bhyve hypervisor in FreeBSD 10.1, 10.2, 10.3, and 11.0 when configured with a large amount of guest memory, allows local users to gain privilege via a crafted device descriptor.
Published: 2017-02-15T15:00:00.000Z
Updated: 2024-08-05T23:10:39.893Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-1888 |
vulnerable | 2026-06-08 05:07:32.164729 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-1887 |
vulnerable | 2026-06-08 05:07:32.164331 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-1886 |
vulnerable | 2026-06-08 05:07:32.163854 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.