FreeBSD Local Security Checks Family for Nessus

IDNameSeverity
152150FreeBSD : fetchmail -- 6.4.19 and older denial of service or information disclosure (cbfd1874-efea-11eb-8fe9-036bd763ff35)
high
152126FreeBSD : redis -- Integer overflow issues with BITFIELD command on 32-bit systems (c561ce49-eabc-11eb-9c3f-0800270512f4)
critical
152125FreeBSD : powerdns -- remotely triggered crash (ce79167f-ee1c-11eb-9785-b42e99a1b9c3)
high
152073FreeBSD : pjsip -- Race condition in SSL socket server (92ad12b8-ec09-11eb-aef1-0897988a1c07)
high
152072FreeBSD : asterisk -- Remote Crash Vulnerability in PJSIP channel driver (ffa364e1-ebf5-11eb-aef1-0897988a1c07)
high
152071FreeBSD : mosquitto -- NULL pointer dereference (cc553d79-e1f0-4b94-89f2-bacad42ee826)
high
152070FreeBSD : asterisk -- Remote crash when using IAX2 channel driver (fb3455be-ebf6-11eb-aef1-0897988a1c07)
high
152069FreeBSD : asterisk -- pjproject/pjsip: crash when SSL socket destroyed during handshake (53fbffe6-ebf7-11eb-aef1-0897988a1c07)
high
151972FreeBSD : chromium -- multiple vulnerabilities (76487640-ea29-11eb-a686-3065ec8fd3ec)
critical
151971FreeBSD : cURL -- Multiple vulnerabilities (aa646c01-ea0d-11eb-9b84-d4c9ef517024)
critical
151900FreeBSD : gitea -- multiple vulnerabilities (943d23b6-e65e-11eb-ad30-0800273f11ea)
high
151899FreeBSD : MySQL -- Multiple vulnerabilities (38a4a043-e937-11eb-9b84-d4c9ef517024)
high
151809FreeBSD : chromium -- multiple vulnerabilities (1ba21ff1-e672-11eb-a686-3065ec8fd3ec)
critical
151778FreeBSD : Ruby -- multiple vulnerabilities (7ed5779c-e4c7-11eb-91d7-08002728f74c)
high
151624FreeBSD : go -- crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters (c365536d-e3cf-11eb-9d8d-b37b683944c2)
medium
151500FreeBSD : mantis -- multiple vulnerabilities (9b1699ff-d84c-11eb-92d6-1b6ff3dfe4d3)
critical
151497FreeBSD : Gitlab -- vulnerability (01974420-dfaf-11eb-ba49-001b217b3468)
high
151410FreeBSD : Gitlab -- Multiple Vulnerabilities (8ba8278d-db06-11eb-ba49-001b217b3468)
high
151407FreeBSD : openexr v3.0.5 -- fixes miscellaneous security issues (f2596f27-db4c-11eb-8bc6-c556d71493c9)
high
151377FreeBSD : Exiv2 -- Multiple vulnerabilities (d49f86ab-d9c7-11eb-a200-00155d01f201)
high
151346FreeBSD : jenkins -- multiple vulnerabilities (9d271bab-da22-11eb-86f0-94c691a700a6)
high
151121FreeBSD : RabbitMQ -- Denial of Service via improper input validation (7003b62d-7252-46ff-a9df-1b1900f1e65b)
high
151120FreeBSD : RabbitMQ-C -- integer overflow leads to heap corruption (7c555ce3-658d-4589-83dd-4b6a31c5d610)
critical
151119FreeBSD : PuppetDB -- SQL Injection (41bc849f-d5ef-11eb-ae37-589cfc007716)
high
151010FreeBSD : Apache httpd -- Multiple vulnerabilities (cce76eca-ca16-11eb-9b84-d4c9ef517024)
critical
151009FreeBSD : Ansible -- Templating engine bug (4c9159ea-d4c9-11eb-aeee-8c164582fbac)
high
151008FreeBSD : ircII -- denial of service (9f27ac74-cdee-11eb-930d-fc4dd43e2b6a)
high
151007FreeBSD : cacti -- SQL Injection was possible due to incorrect validation order (e4cd0b38-c9f9-11eb-87e1-08002750c711)
high
151005FreeBSD : chromium -- multiple vulnerabilities (afdc7579-d023-11eb-bcad-3065ec8fd3ec)
high
151004FreeBSD : gitea -- multiple vulnerabilities (0e561c06-d13a-11eb-92be-0800273f11ea)
high
151003FreeBSD : dovecot -- multiple vulnerabilities (d18f431d-d360-11eb-a32c-00a0989e4ec1)
medium
151002FreeBSD : dragonfly -- argument injection (c9e2a1a7-caa1-11eb-904f-14dae9d5a9d2)
critical
151001FreeBSD : dovecot-pigeonhole -- Sieve excessive resource usage (f3fc2b50-d36a-11eb-a32c-00a0989e4ec1)
medium
150702FreeBSD : chromium -- multiple vulnerabilities (20b3ab21-c9df-11eb-8558-3065ec8fd3ec)
high
150408FreeBSD : dino -- Path traversal in Dino file transfers (fc1bcbca-c88b-11eb-9120-f02f74d0e4bd)
medium
150317FreeBSD : SOGo -- SAML user authentication impersonation (69815a1d-c31d-11eb-9633-b42e99a1b9c3)
high
150316FreeBSD : lasso -- signature checking failure (417de1e6-c31b-11eb-9633-b42e99a1b9c3)
high
150314FreeBSD : polkit -- local privilege escalation using polkit_system_bus_name_get_creds_sync (36a35d83-c560-11eb-84ab-e0d55e2a8bf9)
high
150312FreeBSD : pglogical -- shell command injection in pglogical.create_subscription() (45b8716b-c707-11eb-b9a0-6805ca0b3d42)
medium
150311FreeBSD : tauthon -- Regular Expression Denial of Service (c7855866-c511-11eb-ae1d-b42e991fc52e)
medium
150308FreeBSD : drupal7 -- fix possible CSS (f70ab05e-be06-11eb-b983-000c294bb613)
medium
150273FreeBSD : go -- multiple vulnerabilities (079b3641-c4bd-11eb-a22a-693f0544ae52)
high
150260FreeBSD : aiohttp -- open redirect vulnerability (3000acee-c45d-11eb-904f-14dae9d5a9d2)
medium
150230FreeBSD : PyYAML -- arbitrary code execution (c7ec6375-c3cf-11eb-904f-14dae9d5a9d2)
critical
150218FreeBSD : isc-dhcp -- remotely exploitable vulnerability (e24fb8f8-c39a-11eb-9370-b42e99a1b9c3)
high
150196FreeBSD : Gitlab -- Multiple Vulnerabilities (5f52d646-c31f-11eb-8dcf-001b217b3468)
medium
150172FreeBSD : redis -- integer overflow (8eb69cd0-c2ec-11eb-b6e7-8c164567ca3c)
high
150171FreeBSD : libX11 -- Arbitrary code execution (58d6ed66-c2e8-11eb-9fb0-6451062f0f7a)
critical
150168FreeBSD : zeek -- several potential DoS vulnerabilities (a550d62c-f78d-4407-97d9-93876b6741b9)
high
150105FreeBSD : wayland -- integer overflow (fd24a530-c202-11eb-b217-b42e99639323)
medium