Total vulnerabilities in the database
The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allows remote attackers to bypass file permissions on NFS filesystems via crafted requests.
| Software | From | Fixed in |
|---|---|---|
| freebsd / freebsd | 9.0 | 9.0.x |
| freebsd / freebsd | 9.1 | 9.1.x |
| freebsd / freebsd | 8.3 | 8.3.x |
| freebsd / freebsd | 9.1-p4 | 9.1-p4.x |
| freebsd / freebsd | 9.1-p5 | 9.1-p5.x |