vulnerability
FreeBSD: VID-762b7d4a-ec19-11ea-88f8-901b0ef719ab (CVE-2020-7461): FreeBSD -- dhclient heap overflow
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Sep 2, 2020 | Sep 3, 2020 | Dec 10, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Sep 2, 2020
Added
Sep 3, 2020
Modified
Dec 10, 2025
Description
Problem Description: When parsing option 119 data, dhclient(8) computes the uncompressed domain list length so that it can allocate an appropriately sized buffer to store the uncompressed list. The code to compute the length failed to handle certain malformed input, resulting in a heap overflow when the uncompressed list is copied into in inadequately sized buffer. Impact: The heap overflow could in principle be exploited to achieve remote code execution. The affected process runs with reduced privileges in a Capsicum sandbox, limiting the immediate impact of an exploit. However, it is possible the bug could be combined with other vulnerabilities to escape the sandbox.
Solutions
freebsd-upgrade-base-12_1-release-p9freebsd-upgrade-base-11_4-release-p3freebsd-upgrade-base-11_3-release-p13
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.