vulnerability
FreeBSD: VID-762b7d4a-ec19-11ea-88f8-901b0ef719ab (CVE-2020-7461): FreeBSD -- dhclient heap overflow
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Sep 2, 2020 | Sep 3, 2020 | Mar 25, 2026 |
Severity
7
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Sep 2, 2020
Added
Sep 3, 2020
Modified
Mar 25, 2026
Description
Problem Description: When parsing option 119 data, dhclient(8) computes the uncompressed domain list length so that it can allocate an appropriately sized buffer to store the uncompressed list. The code to compute the length failed to handle certain malformed input, resulting in a heap overflow when the uncompressed list is copied into in inadequately sized buffer. Impact: The heap overflow could in principle be exploited to achieve remote code execution. The affected process runs with reduced privileges in a Capsicum sandbox, limiting the immediate impact of an exploit. However, it is possible the bug could be combined with other vulnerabilities to escape the sandbox.
Solutions
freebsd-upgrade-base-12_1-release-p9freebsd-upgrade-base-11_4-release-p3freebsd-upgrade-base-11_3-release-p13
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.