In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates some packet length allowing disclosure of small amounts of kernel (for kernel NAT) or natd process space (for userspace natd).
References
Link | Resource |
---|---|
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:13.libalias.asc | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20200518-0005/ | Third Party Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-20-661/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: freebsd
Published: 2020-05-13T15:31:36
Updated: 2020-05-19T14:06:13
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7455
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-13T16:15:13.120
Modified: 2022-06-05T03:04:02.680
Link: CVE-2020-7455
JSON object: View
Redhat Information
No data.
CWE