In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2021/Apr/49 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Apr/50 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Apr/57 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Apr/58 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Apr/59 | Mailing List Third Party Advisory |
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:25.sctp.asc | Vendor Advisory |
https://support.apple.com/kb/HT212317 | Third Party Advisory |
https://support.apple.com/kb/HT212318 | Third Party Advisory |
https://support.apple.com/kb/HT212319 | Third Party Advisory |
https://support.apple.com/kb/HT212321 | Third Party Advisory |
https://support.apple.com/kb/HT212323 | Third Party Advisory |
https://support.apple.com/kb/HT212324 | Third Party Advisory |
https://support.apple.com/kb/HT212325 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
09 Jan 2023, 16:41
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* | |
First Time |
Apple ipados
|
22 Apr 2022, 18:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* |
|
First Time |
Apple watchos
Apple tvos |
|
References |
|
|
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/49 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/50 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/57 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/58 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/59 - Mailing List, Third Party Advisory |
30 Apr 2021, 17:29
Type | Values Removed | Values Added |
---|---|---|
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/50 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/58 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT212317 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT212319 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT212318 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/57 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT212325 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/49 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT212321 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Apr/59 - Third Party Advisory | |
CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:* cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:* cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
27 Apr 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Apr 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
02 Apr 2021, 18:07
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://security.FreeBSD.org/advisories/FreeBSD-SA-20:25.sctp.asc - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 4.9
v3 : 5.5 |
CPE | cpe:2.3:o:freebsd:freebsd:11.3:p11:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p10:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p12:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p7:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p6:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.4:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p8:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p8:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p6:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:11.3:p9:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p7:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.1:p5:*:*:*:*:*:* |
|
CWE | CWE-416 |
26 Mar 2021, 21:27
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-26 21:15
Updated : 2023-12-10 13:55
NVD link : CVE-2020-7463
Mitre link : CVE-2020-7463
CVE.ORG link : CVE-2020-7463
JSON object : View
Products Affected
apple
- itunes
- safari
- macos
- tvos
- watchos
- icloud
- iphone_os
- ipados
freebsd
- freebsd
CWE
CWE-416
Use After Free