GCVE - cpe:2.3:o:freebsd:freebsd:12.2:p7:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:12.2:p7:*:*:*:*:*:*

part: o version: 12.2 update: p7

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.165292

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-29632`	vulnerable	2026-06-08 05:31:26.659314	Details available In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before r370674, 13.0-RELEASE before p6, and 12.2-RELEASE before p12, certain conditions involving use of the highlight buffer while text is scrolling on the console, console data may overwrite data structures associated with the system console or other kernel memory. Published: 2022-01-18T16:51:45.000Z Updated: 2024-08-03T22:11:06.251Z Open on db.gcve.eu Reference links https://security.freebsd.org/advisories/FreeBSD-SA-22:01.vt.asc https://security.netapp.com/advisory/ntap-20220217-0004/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-29631`	vulnerable	2026-06-08 05:31:26.653819	Details available In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before r370399, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, certain VirtIO-based device models in bhyve failed to handle errors when fetching I/O descriptors. A malicious guest may cause the device model to operate on uninitialized I/O vectors leading to memory corruption, crashing of the bhyve process, and possibly arbitrary code execution in the bhyve process. Published: 2021-08-30T18:00:15.000Z Updated: 2024-08-03T22:11:06.287Z Open on db.gcve.eu Reference links https://security.FreeBSD.org/advisories/FreeBSD-SA-21:13.bhyve.asc https://security.netapp.com/advisory/ntap-20210923-0004/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-29630`	vulnerable	2026-06-08 05:31:26.648661	Details available In FreeBSD 13.0-STABLE before n246938-0729ba2f49c9, 12.2-STABLE before r370383, 11.4-STABLE before r370381, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, the ggatec daemon does not validate the size of a response before writing it to a fixed-sized buffer allowing a malicious attacker in a privileged network position to overwrite the stack of ggatec and potentially execute arbitrary code. Published: 2021-08-30T18:01:08.000Z Updated: 2024-08-03T22:11:06.118Z Open on db.gcve.eu Reference links https://security.FreeBSD.org/advisories/FreeBSD-SA-21:14.ggatec.asc https://security.netapp.com/advisory/ntap-20210923-0005/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.