FreeBSD 11.3 Patch 7
Approved changes feed: RSS · Atom
cpe:2.3:o:freebsd:freebsd:11.3:p7:*:*:*:*:*:*
part: o version: 11.3 update: p7
| Vendor | Freebsd (1e86ea60-a74f-5f45-ac35-3eb819c9e064) |
|---|---|
| Product | Freebsd (be9b20ed-2a20-5a94-a224-b1a6fdcacb17) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/freebsd/freebsd-src |
purl2cpe | 2026-06-01 10:12:45.165209 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-7468 |
vulnerable | 2026-06-08 05:27:13.136319 |
Details available
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5). Moreover, the bug allows a malicious client to gain root privileges.
Published: 2021-03-26T20:27:13.000Z
Updated: 2024-08-04T09:33:19.881Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7467 |
vulnerable | 2026-06-08 05:27:13.134502 |
Details available
In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped.
Published: 2021-03-26T20:27:06.000Z
Updated: 2024-08-04T09:33:19.943Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7464 |
vulnerable | 2026-06-08 05:27:13.122927 |
Details available
In FreeBSD 12.2-STABLE before r365730, 11.4-STABLE before r365738, 12.1-RELEASE before p10, 11.4-RELEASE before p4, and 11.3-RELEASE before p14, a programming error in the ure(4) device driver caused some Realtek USB Ethernet interfaces to incorrectly report packets with more than 2048 bytes in a single USB transfer as having a length of only 2048 bytes. An adversary can exploit this to cause the driver to misinterpret part of the payload of a large packet as a separate packet, and thereby inject packets across security boundaries such as VLANs.
Published: 2021-03-26T20:55:25.000Z
Updated: 2024-08-04T09:33:18.651Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7463 |
vulnerable | 2026-06-08 05:27:13.104820 |
Details available
In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.
Published: 2021-03-26T20:48:18.000Z
Updated: 2024-08-04T09:33:18.739Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7462 |
vulnerable | 2026-06-08 05:27:13.103512 |
Details available
In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, improper mbuf handling in the kernel causes a use-after-free bug by sending IPv6 Hop-by-Hop options over the loopback interface. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.
Published: 2021-03-26T20:48:01.000Z
Updated: 2024-08-04T09:25:49.060Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7461 |
vulnerable | 2026-06-08 05:27:13.095395 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7460 |
vulnerable | 2026-06-08 05:27:13.089704 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7459 |
vulnerable | 2026-06-08 05:27:13.085309 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7457 |
vulnerable | 2026-06-08 05:27:13.079235 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7456 |
vulnerable | 2026-06-08 05:27:13.067670 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7455 |
vulnerable | 2026-06-08 05:27:13.066108 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7454 |
vulnerable | 2026-06-08 05:27:13.061060 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-25583 |
vulnerable | 2026-06-08 05:22:36.859378 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-24718 |
vulnerable | 2026-06-08 05:22:35.409319 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-5614 |
vulnerable | 2026-06-08 05:14:07.862109 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-15879 |
vulnerable | 2026-06-08 05:12:58.168239 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-15878 |
vulnerable | 2026-06-08 05:12:58.164212 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-15874 |
vulnerable | 2026-06-08 05:12:58.151822 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.