exploitDog

GHSA-j8c4-54pw-h2vw

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.

Ссылки

EPSS

Процентиль: 15%

0.00049

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-416

Связанные уязвимости

CVE-2020-7463

CVSS3: 5.5

nvd

почти 5 лет назад

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.

CVE-2020-7463

CVSS3: 5.5

debian

почти 5 лет назад

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12. ...

EPSS

Процентиль: 15%

0.00049

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-416