GCVE - cpe:2.3:o:freebsd:freebsd:11.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:11.2:*:*:*:*:*:*:*

part: o version: 11.2 update: *

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-6924`	vulnerable	2026-06-08 05:11:54.463317	Details available In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p3, 11.1-RELEASE-p14, 10.4-STABLE, and 10.4-RELEASE-p12, insufficient validation in the ELF header parser could allow a malicious ELF binary to cause a kernel crash or disclose kernel memory. Published: 2018-09-12T15:00:00.000Z Updated: 2024-09-16T19:30:37.231Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1041646 https://security.freebsd.org/advisories/FreeBSD-SA-18:12.elf.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-6923`	vulnerable	2026-06-08 05:11:54.462852	Details available In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip fragment reassembly code is vulnerable to a denial of service due to excessive system resource consumption. This issue can allow a remote attacker who is able to send an arbitrary ip fragments to cause the machine to consume excessive resources. Published: 2018-09-04T18:00:00.000Z Updated: 2024-09-16T23:16:08.596Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/105336 http://www.securitytracker.com/id/1041505 https://www.freebsd.org/security/advisories/FreeBSD-SA-18:10.ip.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3665`	vulnerable	2026-06-08 05:11:40.815171	Details available System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel. Published: 2018-06-21T20:00:00.000Z Updated: 2024-09-17T01:01:36.405Z Open on db.gcve.eu Reference links https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html https://access.redhat.com/errata/RHSA-2018:2164 https://usn.ubuntu.com/3696-1/ http://www.securitytracker.com/id/1041125 https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.