Vulnerabilities (CVE)

Vendor filter

Openbsd Subscribe

Filter

35 total CVE
CVE Vendors Products Updated CVSS
CVE-2017-8301 1 Openbsd 1 Libressl 2019-10-03 2.6
LibreSSL 2.5.1 to 2.5.3 lacks TLS certificate verification if SSL_get_verify_result is relied upon for a later check of a verification result, in a use case where a user-provided verification callback returns 1, as demonstrated by acceptance of...
CVE-2018-20685 7 Openbsd, Netapp, Winscp and 4 more 11 Openssh, Cloud Backup, Element Software and 8 more 2019-10-03 2.6
In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.
CVE-2002-2280 1 Openbsd 1 Openbsd 2018-10-30 2.1
syslogd on OpenBSD 2.9 through 3.2 does not change the source IP address of syslog packets when the machine's IP addressed is changed without rebooting, e.g. via ifconfig, which can cause incorrect information to be sent to the syslog server.
CVE-2006-5229 1 Openbsd 1 Openssh 2018-10-17 2.6
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid...
CVE-2007-1352 8 Turbolinux, Ubuntu, X.org and 5 more 12 Mandrake Multi Network Firewall, Linux Advanced Workstation, Enterprise Linux Desktop and 9 more 2018-10-16 3.8
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
CVE-2008-5161 2 Ssh, Openbsd 5 Openssh, Tectia Connectsecure, Tectia Server and 2 more 2018-10-11 2.6
Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4;...
CVE-2016-10011 1 Openbsd 1 Openssh 2018-09-11 2.1
authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.
CVE-2015-6563 2 Apple, Openbsd 2 Openssh, Mac Os X 2018-09-11 1.9
The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in...
CVE-2018-12433 11 Botan Project, Cryptlib, Gnupg and 8 more 11 Botan, Cryptlib, Libgcrypt and 8 more 2018-08-09 1.9
** DISPUTED ** cryptlib through 3.4.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a...
CVE-2018-12437 11 Botan Project, Cryptlib, Gnupg and 8 more 11 Botan, Cryptlib, Libgcrypt and 8 more 2018-08-09 1.9
LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual...
CVE-2018-12438 11 Botan Project, Cryptlib, Gnupg and 8 more 11 Botan, Cryptlib, Libgcrypt and 8 more 2018-08-09 1.9
The Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the...
CVE-2018-12434 1 Openbsd 1 Libressl 2018-08-06 1.9
LibreSSL before 2.6.5 and 2.7.x before 2.7.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or...
CVE-2002-2092 3 Openbsd, Netbsd, Freebsd 3 Netbsd, Freebsd, Openbsd 2017-12-19 3.7
Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.
CVE-2001-1047 1 Openbsd 1 Openbsd 2017-12-19 1.2
Race condition in OpenBSD VFS allows local users to cause a denial of service (kernel panic) by (1) creating a pipe in one thread and causing another thread to set one of the file descriptors to NULL via a close, or (2) calling dup2 on a file...
CVE-2005-2666 1 Openbsd 1 Openssh 2017-10-11 1.2
SSH, as implemented in OpenSSH before 4.0 and possibly other implementations, stores hostnames, IP addresses, and keys in plaintext in the known_hosts file, which makes it easier for an attacker that has compromised an SSH user's account to...
CVE-2001-1029 2 Openbsd, Freebsd 2 Openssh, Freebsd 2017-10-10 2.1
libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by...
CVE-2001-0378 1 Openbsd 1 Openbsd 2017-10-10 2.1
readline prior to 4.1, in OpenBSD 2.8 and earlier, creates history files with insecure permissions, which allows a local attacker to recover potentially sensitive information via readline history files.
CVE-2000-0489 3 Netbsd, Openbsd, Freebsd 3 Netbsd, Freebsd, Openbsd 2017-10-10 2.1
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.
CVE-1999-1214 5 Openbsd, Freebsd, Netbsd and 2 more 5 Netbsd, Freebsd, Bsd and 2 more 2017-10-10 2.1
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be...
CVE-2012-0814 1 Openbsd 1 Openssh 2017-08-29 3.5
The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading...