GCVE - cpe:2.3:o:freebsd:freebsd:9.3:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:9.3:*:*:*:*:*:*:*

part: o version: 9.3 update: *

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-6923`	vulnerable	2026-06-08 05:11:54.460232	Details available In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip fragment reassembly code is vulnerable to a denial of service due to excessive system resource consumption. This issue can allow a remote attacker who is able to send an arbitrary ip fragments to cause the machine to consume excessive resources. Published: 2018-09-04T18:00:00.000Z Updated: 2024-09-16T23:16:08.596Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105336 http://www.securitytracker.com/id/1041505 https://www.freebsd.org/security/advisories/FreeBSD-SA-18:10.ip.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-6559`	vulnerable	2026-06-08 05:08:02.768082	The BSD libc library's link_ntoa() function may be vulnerable to a classic buffer overflow Improper bounds checking of the obuf variable in the link_ntoa() function in linkaddr.c of the BSD libc library may allow an attacker to read or write from memory. The full impact and severity depends on the method of exploit and how the library is used by applications. According to analysis by FreeBSD developers, it is very unlikely that applications exist that utilize link_ntoa() in an exploitable manner, and the CERT/CC is not aware of any proof of concept. A blog post describes the functionality of link_ntoa() and points out that none of the base utilities use this function in an exploitable manner. For more information, please see FreeBSD Security Advisory SA-16:37. Published: 2018-07-13T20:00:00.000Z Updated: 2024-08-06T01:36:29.410Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1037398 https://www.freebsd.org/security/advisories/FreeBSD-SA-16:37.libc.asc https://www.kb.cert.org/vuls/id/548487 https://www.securityfocus.com/bid/94694	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-5766`	vulnerable	2026-06-08 05:07:57.736306	Details available Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image. Published: 2016-08-07T10:00:00.000Z Updated: 2024-08-06T01:15:09.075Z Open on db.gcve.eu Reference links https://bugs.php.net/bug.php?id=72339 https://libgd.github.io/release-2.2.3.html http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00004.html http://lists.opensuse.org/opensuse-updates/2016-08/msg00003.html http://rhn.redhat.com/errata/RHSA-2016-2750.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1888`	vulnerable	2026-06-08 05:07:32.164670	Details available The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject arguments to login and bypass authentication via vectors involving a "sequence of memory allocation failures." Published: 2017-02-15T15:00:00.000Z Updated: 2024-08-05T23:10:39.887Z Open on db.gcve.eu Reference links https://www.freebsd.org/security/advisories/FreeBSD-SA-16:36.telnetd.asc http://www.securitytracker.com/id/1037399	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1886`	vulnerable	2026-06-08 05:07:32.161261	Details available Integer signedness error in the genkbd_commonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory overwrite and kernel crash), or gain privileges via a negative value in the flen structure member in the arg argument in a SETFKEY ioctl call, which triggers a "two way heap and stack overflow." Published: 2016-05-25T15:00:00.000Z Updated: 2024-08-05T23:10:40.320Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1035905 http://www.securityfocus.com/bid/90734 https://www.freebsd.org/security/advisories/FreeBSD-SA-16:18.atkbd.asc https://security.FreeBSD.org/patches/SA-16:18/atkbd.patch http://cturt.github.io/SETFKEY.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1885`	vulnerable	2026-06-08 05:07:32.160862	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1883`	vulnerable	2026-06-08 05:07:32.160229	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1882`	vulnerable	2026-06-08 05:07:32.159892	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1881`	vulnerable	2026-06-08 05:07:32.159557	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1880`	vulnerable	2026-06-08 05:07:32.159178	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-1879`	vulnerable	2026-06-08 05:07:32.157506	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-5677`	vulnerable	2026-06-08 05:06:50.696544	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-5675`	vulnerable	2026-06-08 05:06:50.696145	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-5674`	vulnerable	2026-06-08 05:06:50.694418	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-1414`	vulnerable	2026-06-08 05:06:25.558212	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-8613`	vulnerable	2026-06-08 05:06:09.709295	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-8612`	vulnerable	2026-06-08 05:06:09.708911	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-8476`	vulnerable	2026-06-08 05:06:08.927811	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3955`	vulnerable	2026-06-08 05:05:43.604801	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3954`	vulnerable	2026-06-08 05:05:43.598398	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3711`	vulnerable	2026-06-08 05:05:42.539239	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-0211`	vulnerable	2026-06-08 05:03:45.865699	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Freebsd

PURL mappings

Vulnerability references

Contribute