PT-2020-19593 · Freebsd · Freebsd
Published
2020-07-08
·
Updated
2022-01-04
·
CVE-2020-7457
CVSS v3.1
8.1
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
FreeBSD versions 12.1-STABLE before r359565
FreeBSD versions 12.1-RELEASE before p7
FreeBSD versions 11.4-STABLE before r362975
FreeBSD versions 11.4-RELEASE before p1
FreeBSD versions 11.3-RELEASE before p11
Description
The issue is related to a race condition in the IPV6 2292PKTOPTIONS socket option set handler due to missing synchronization. This allows a malicious application to modify memory after it has been freed, which could result in code execution.
Recommendations
For FreeBSD versions 12.1-STABLE before r359565, update to a version after r359565 to resolve the issue.
For FreeBSD versions 12.1-RELEASE before p7, update to p7 or later to resolve the issue.
For FreeBSD versions 11.4-STABLE before r362975, update to a version after r362975 to resolve the issue.
For FreeBSD versions 11.4-RELEASE before p1, update to p1 or later to resolve the issue.
For FreeBSD versions 11.3-RELEASE before p11, update to p11 or later to resolve the issue.
Exploit
Fix
Race Condition
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Freebsd