FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-01-25 14:24:43 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
fefcd340-624f-11ee-8e38-002590c1f29c	FreeBSD -- msdosfs data disclosure Problem Description: In certain cases using the truncate or ftruncate system call to extend a file size populates the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes. Impact: A user with write access to files on a msdosfs file system may be able to read unintended data (for example, from a previously deleted file). Discovery 2023-10-03 Entry 2023-10-04 FreeBSD-kernel >= 13.2 lt 13.2_4 >= 12.4 lt 12.4_6 CVE-2023-5368 SA-23:12.msdosfs

VuXML ID

Description

fefcd340-624f-11ee-8e38-002590c1f29c

FreeBSD -- msdosfs data disclosure

Problem Description:

In certain cases using the truncate or ftruncate system call to extend a file size populates the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes.

Impact:

A user with write access to files on a msdosfs file system may be able to read unintended data (for example, from a previously deleted file).

Discovery 2023-10-03
Entry 2023-10-04
FreeBSD-kernel

>= 13.2 lt 13.2_4

>= 12.4 lt 12.4_6

CVE-2023-5368
SA-23:12.msdosfs