CVE-2020-7468

Name of the Vulnerable Software and Affected Versions FreeBSD versions 11.3-RELEASE before p14 FreeBSD versions 11.4-RELEASE before p4 FreeBSD versions 11.4-STABLE before r365773 FreeBSD versions 12.1-RELEASE before p10 FreeBSD versions 12.2-STABLE before r365772

Description A bug in the implementation of the file system sandbox in ftpd(8) can be used to escape the file system restriction configured in ftpchroot(5) when combined with capabilities available to an authenticated FTP user. This bug allows a malicious client to gain root privileges.

Recommendations For FreeBSD version 11.3-RELEASE, update to at least p14 to resolve the issue. For FreeBSD version 11.4-RELEASE, update to at least p4 to resolve the issue. For FreeBSD version 11.4-STABLE, update to at least r365773 to resolve the issue. For FreeBSD version 12.1-RELEASE, update to at least p10 to resolve the issue. For FreeBSD version 12.2-STABLE, update to at least r365772 to resolve the issue.