Total vulnerabilities in the database
In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient(8) fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle be exploited to achieve remote code execution. The affected process runs with reduced privileges in a Capsicum sandbox, limiting the immediate impact of an exploit.
| Software | From | Fixed in |
|---|---|---|
| freebsd / freebsd | 11.3 | 11.3.x |
| freebsd / freebsd | 11.3-p1 | 11.3-p1.x |
| freebsd / freebsd | 11.3-p3 | 11.3-p3.x |
| freebsd / freebsd | 11.3-p2 | 11.3-p2.x |
| freebsd / freebsd | 12.1-p1 | 12.1-p1.x |
| freebsd / freebsd | 12.1 | 12.1.x |
| freebsd / freebsd | 11.3-p4 | 11.3-p4.x |
| freebsd / freebsd | 11.3-p5 | 11.3-p5.x |
| freebsd / freebsd | 11.3-p6 | 11.3-p6.x |
| freebsd / freebsd | 12.1-p2 | 12.1-p2.x |
| freebsd / freebsd | 11.3-p7 | 11.3-p7.x |
| freebsd / freebsd | 12.1-p3 | 12.1-p3.x |
| freebsd / freebsd | 12.1-p4 | 12.1-p4.x |
| freebsd / freebsd | 11.3-p8 | 11.3-p8.x |
| freebsd / freebsd | 11.4 | 11.4.x |
| freebsd / freebsd | 12.1-p5 | 12.1-p5.x |
| freebsd / freebsd | 11.3-p9 | 11.3-p9.x |
| freebsd / freebsd | 12.1-p6 | 12.1-p6.x |
| freebsd / freebsd | 11.3-p10 | 11.3-p10.x |
| freebsd / freebsd | 11.3-p11 | 11.3-p11.x |
| freebsd / freebsd | 11.4-p1 | 11.4-p1.x |
| freebsd / freebsd | 12.1-p7 | 12.1-p7.x |
| freebsd / freebsd | 12.1-p8 | 12.1-p8.x |
| freebsd / freebsd | 11.4-p2 | 11.4-p2.x |
| freebsd / freebsd | 11.3-p12 | 11.3-p12.x |
| siemens / simatic_rf350m_firmware | - | - |
| siemens / simatic_rf650m_firmware | - | - |