GCVE - cpe:2.3:o:freebsd:freebsd:4.0:releng:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:4.0:releng:*:*:*:*:*:*

part: o version: 4.0 update: releng

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.223306

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-1283`	vulnerable	2026-06-08 04:48:56.809378	Details available opiepasswd in One-Time Passwords in Everything (OPIE) in FreeBSD 4.10-RELEASE-p22 through 6.1-STABLE before 20060322 uses the getlogin function to determine the invoking user account, which might allow local users to configure OPIE access to the root account and possibly gain root privileges if a root shell is permitted by the configuration of the wheel group or sshd. Published: 2006-03-23T20:00:00.000Z Updated: 2024-08-07T17:03:28.908Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/25397 http://securitytracker.com/id?1015817 http://www.securityfocus.com/bid/17194 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:12.opie.asc http://secunia.com/advisories/19347	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-1126`	vulnerable	2026-06-08 04:48:25.560516	Details available The SIOCGIFCONF ioctl (ifconf function) in FreeBSD 4.x through 4.11 and 5.x through 5.4 does not properly clear a buffer before using it, which allows local users to obtain portions of sensitive kernel memory. Published: 2005-04-16T04:00:00.000Z Updated: 2024-08-07T21:35:59.959Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2005/2256 http://secunia.com/advisories/14959 http://secunia.com/advisories/17368 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:04.ifconf.asc http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0988`	vulnerable	2026-06-08 04:48:14.146247	Details available Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete. Published: 2005-04-06T04:00:00.000Z Updated: 2024-08-07T21:35:59.902Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html http://secunia.com/advisories/22033 http://www.vupen.com/english/advisories/2006/3101 http://secunia.com/advisories/21253 http://www.debian.org/security/2005/dsa-752	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0708`	vulnerable	2026-06-08 04:48:13.419749	Details available The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote attackers to obtain sensitive information. Published: 2005-04-05T04:00:00.000Z Updated: 2024-08-07T21:21:06.609Z Open on db.gcve.eu Reference links https://www.freebsd.org/security/advisories/FreeBSD-SA-05:02.sendfile.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0610`	vulnerable	2026-06-08 04:48:13.154421	Details available Multiple symlink vulnerabilities in portupgrade before 20041226_2 in FreeBSD allow local users to (1) overwrite arbitrary files and possibly replace packages to execute arbitrary code via pkg_fetch, (2) overwrite arbitrary files via temporary files when portupgrade upgrades a port or package, or (3) create arbitrary zero-byte files via the pkgdb.fixme temporary file. Published: 2005-04-13T04:00:00.000Z Updated: 2024-08-07T21:21:06.498Z Open on db.gcve.eu Reference links http://secunia.com/advisories/14903 http://www.securityfocus.com/bid/13106 http://www.vuxml.org/freebsd/22f00553-a09d-11d9-a788-0001020eed82.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0356`	vulnerable	2026-06-08 04:48:12.398216	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0109`	vulnerable	2026-06-08 04:48:11.376413	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1471`	vulnerable	2026-06-08 04:47:54.280628	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0435`	vulnerable	2026-06-08 04:47:49.829060	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0125`	vulnerable	2026-06-08 04:47:48.621530	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0002`	vulnerable	2026-06-08 04:47:48.043870	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-0694`	vulnerable	2026-06-08 04:47:22.254889	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0554`	vulnerable	2026-06-08 04:45:20.483946	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.