This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-19 05:30:57 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
| VuXML ID | Description |
|---|---|
| f4464e49-7e04-11ee-8e38-002590c1f29c | FreeBSD -- Incorrect libcap_net limitation list manipulationProblem Description:Casper services allow limiting operations that a process can perform. Each service maintains a specific list of permitted operations. Certain operations can be further restricted, such as specifying which domain names can be resolved. During the verification of limits, the service must ensure that the new set of constraints is a subset of the previous one. In the case of the cap_net service, the currently limited set of domain names was fetched incorrectly. Impact:In certain scenarios, if only a list of resolvable domain names was specified without setting any other limitations, the application could submit a new list of domains including include entries not previously in the list. Discovery 2023-11-08 Entry 2023-11-08 FreeBSD ge 13.2 lt 13.2_5 CVE-2023-5978 SA-23:16.cap_net |