Vulnerability Database
296,733
Total vulnerabilities in the database
CVE-2023-5941
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5 the __sflush() stdio function in libc does not correctly update FILE objects' write space members for write-buffered streams when the write(2) system call returns an error. Â Depending on the nature of an application that calls libc's stdio functions and the presence of errors returned from the write(2) system call (or an overridden stdio write routine) a heap buffer overflow may occur. Such overflows may lead to data corruption or the execution of arbitrary code at the privilege level of the calling program.
| Software | From | Fixed in |
|---|---|---|
| freebsd / freebsd | 12.4-rc2-p2 | 12.4-rc2-p2.x |
| freebsd / freebsd | 12.4-rc2-p1 | 12.4-rc2-p1.x |
| freebsd / freebsd | 12.4 | 12.4.x |
| freebsd / freebsd | 12.4-p1 | 12.4-p1.x |
| freebsd / freebsd | 12.4-p2 | 12.4-p2.x |
| freebsd / freebsd | - | 12.4 |
| freebsd / freebsd | 13.2 | 13.2.x |
| freebsd / freebsd | 12.4-p3 | 12.4-p3.x |
| freebsd / freebsd | 13.2-p1 | 13.2-p1.x |
| freebsd / freebsd | 13.0 | 13.2 |
| freebsd / freebsd | 12.4-p4 | 12.4-p4.x |
| freebsd / freebsd | 13.2-p2 | 13.2-p2.x |
| freebsd / freebsd | 13.2-p3 | 13.2-p3.x |
| freebsd / freebsd | 12.4-p5 | 12.4-p5.x |
| freebsd / freebsd | 13.2-p4 | 13.2-p4.x |
| freebsd / freebsd | 12.4-p6 | 12.4-p6.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime