FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-16 12:24:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
7c555ce3-658d-4589-83dd-4b6a31c5d610	RabbitMQ-C -- integer overflow leads to heap corruption alanxz reports: When parsing a frame header, validate that the frame_size is less than or equal to INT32_MAX. Given frame_max is limited between 0 and INT32_MAX in amqp_login and friends, this does not change the API. This prevents a potential buffer overflow when a malicious client sends a frame_size that is close to UINT32_MAX, in which causes an overflow when computing state->target_size resulting in a small value there. A buffer is then allocated with the small amount, then memcopy copies the frame_size writing to memory beyond the end of the buffer. Discovery 2019-10-29 Entry 2021-06-25 rabbitmq-c rabbitmq-c-devel < 0.10.0 CVE-2019-18609 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18609
7e9cc7fd-6b3e-46c5-ad6d-409d90d41bbf	RabbitMQ-C -- auth credentials visible in commandline tool options hadmut reports: This C library includes 2 command-line tools that can take credentials as command-line options. The credentials are exposed as plain-text in the process list. This could allow an attacker with access to the process list to see the credentials. Discovery 2019-09-19 Entry 2024-08-30 rabbitmq-c < 0.14.0 CVE-2023-35789 https://nvd.nist.gov/vuln/detail/CVE-2023-35789

VuXML ID

Description

7c555ce3-658d-4589-83dd-4b6a31c5d610

RabbitMQ-C -- integer overflow leads to heap corruption

alanxz reports:

When parsing a frame header, validate that the frame_size is less than or equal to INT32_MAX. Given frame_max is limited between 0 and INT32_MAX in amqp_login and friends, this does not change the API. This prevents a potential buffer overflow when a malicious client sends a frame_size that is close to UINT32_MAX, in which causes an overflow when computing state->target_size resulting in a small value there. A buffer is then allocated with the small amount, then memcopy copies the frame_size writing to memory beyond the end of the buffer.

Discovery 2019-10-29
Entry 2021-06-25
rabbitmq-c
rabbitmq-c-devel

< 0.10.0

CVE-2019-18609
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18609

7e9cc7fd-6b3e-46c5-ad6d-409d90d41bbf

RabbitMQ-C -- auth credentials visible in commandline tool options

hadmut reports:

This C library includes 2 command-line tools that can take credentials as command-line options. The credentials are exposed as plain-text in the process list. This could allow an attacker with access to the process list to see the credentials.

Discovery 2019-09-19
Entry 2024-08-30
rabbitmq-c

< 0.14.0

CVE-2023-35789
https://nvd.nist.gov/vuln/detail/CVE-2023-35789