Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
FreeBSD Number Of NVD 488 CRITICAL 29 HIGH 219 MEDIUM 185 LOW 55
URL https://www.freebsd.org/
Explanation Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years.
We plan to release updates to the major versions every two years.
Older versions will be supported until three months after a new minor version is released.
Tag
  • BSD

Add Information URL
No Type Name URL
1 https://www.freebsd.org/security/
2 https://www.freebsd.org/releases/
3 https://www.freebsd.org/security/unsupported.html

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
131 FreeBSD 15 15.1 June 16, 2026 June 16, 2026 March 31, 2027 March 31, 2027 0 0 0 0
132 FreeBSD 13 13.2 April 11, 2023 April 13, 2021 April 13, 2021 3 29 6 0
133 FreeBSD 12 12.4 Dec. 5, 2022 Dec. 11, 2018 June 30, 2024 18 39 22 2
134 FreeBSD 11 11.4 June 16, 2020 Oct. 10, 2016 Sept. 30, 2021 21 48 40 2
135 FreeBSD 10 10.4 Jan. 20, 2014 Jan. 20, 2014 Feb. 28, 2015 7 40 46 2
136 FreeBSD 9 9.3 July 16, 2014 Jan. 10, 2012 Dec. 31, 2016 5 38 33 6
137 FreeBSD 8 8.4 June 9, 2013 Nov. 25, 2009 Aug. 1, 2015 5 38 33 6
138 FreeBSD 7 7.4 Feb. 24, 2011 Feb. 27, 2008 Feb. 28, 2013 5 37 31 5
139 FreeBSD 6 6.4 Nov. 28, 2008 Nov. 4, 2005 Nov. 30, 2010 6 43 46 15
140 FreeBSD 5 5.5 May 25, 2006 Nov. 6, 2004 May 31, 2008 7 42 50 18
141 FreeBSD 4 4.0 March 14, 2000 Jan. 31, 2007 8 67 61 23
142 FreeBSD 3 3.0 Oct. 16, 1998 Jan. 1, 1900 6 57 47 16
143 FreeBSD 2 2.0.5 Nov. 22, 1994 Jan. 1, 1900 6 51 41 10
144 FreeBSD 1 1.0 Oct. 1, 1993 Jan. 1, 1900 26 112 90 9
145 FreeBSD 0.4_1 0.4_1 Jan. 1, 1900 6 27 30 4
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
131 5.5
2.1
MEDIUM
Local
In FreeBSD before 11.2-STABLE(r338983), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338984), and 10.4-RELEASE-p13, due to insufficient initialization of memory copied to userland in the getcontex… CWE-200
Information Exposure
CVE-2018-17155 cpe:2.3:o:freebsd:freebsd:11.2:p4
cpe:2.3:o:freebsd:freebsd:11.1:p15
cpe:2.3:o:freebsd:freebsd:10.4:p13
cpe:2.…
11.2 2024-11-21 12:53
2018-09-28
Show GitHub Exploit DB Packet Storm
132 5.5
4.9
MEDIUM
Local
In FreeBSD before 11.2-STABLE(r338987), 11.2-RELEASE-p4, and 11.1-RELEASE-p15, due to insufficient memory checking in the freebsd4_getfsstat system call, a NULL pointer dereference can occur. Unprivi… CWE-476
 NULL Pointer Dereference
CVE-2018-17154 cpe:2.3:o:freebsd:freebsd:11.2:p4
cpe:2.3:o:freebsd:freebsd:11.1:p15
cpe:2.3:o:freebsd:freebsd:*:*
11.2 2024-11-21 12:53
2018-09-28
Show GitHub Exploit DB Packet Storm
133 7.1
5.6
HIGH
Local
In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p3, 11.1-RELEASE-p14, 10.4-STABLE, and 10.4-RELEASE-p12, insufficient validation in the ELF header parser could allow a malicious ELF binary to cause a ker… CWE-20
 Improper Input Validation 
CVE-2018-6924 cpe:2.3:o:freebsd:freebsd:11.2:*
cpe:2.3:o:freebsd:freebsd:10.4:*
cpe:2.3:o:freebsd:freebsd:*:*
11.0 11.1 2024-11-21 13:11
2018-09-12
Show GitHub Exploit DB Packet Storm
134 7.8
7.2
HIGH
Local
In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. A specially crafted execut… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-1085 cpe:2.3:o:freebsd:freebsd:*:* 11.2 2024-11-21 12:21
2018-09-12
Show GitHub Exploit DB Packet Storm
135 7.5
7.8
HIGH
Network
In FreeBSD before 11.2-RELEASE, multiple issues with the implementation of the stack guard-page reduce the protections afforded by the guard-page. This results in the possibility a poorly written pro… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-1084 cpe:2.3:o:freebsd:freebsd:*:* 11.2 2024-11-21 12:21
2018-09-12
Show GitHub Exploit DB Packet Storm
136 7.5
7.8
HIGH
Network
In FreeBSD before 11.2-RELEASE, a stack guard-page is available but is disabled by default. This results in the possibility a poorly written process could be cause a stack overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-1083 cpe:2.3:o:freebsd:freebsd:*:* 11.2 2024-11-21 12:21
2018-09-12
Show GitHub Exploit DB Packet Storm
137 7.5
5.0
HIGH
Network
In FreeBSD 11.x before 11.1-RELEASE and 10.x before 10.4-RELEASE, the qsort algorithm has a deterministic recursion pattern. Feeding a pathological input to the algorithm can lead to excessive stack … CWE-20
 Improper Input Validation 
CVE-2017-1082 cpe:2.3:o:freebsd:freebsd:*:* 11.0
10.0

10.4

11.1
2024-11-21 12:21
2018-09-12
Show GitHub Exploit DB Packet Storm
138 7.5
7.8
HIGH
Network
In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip fragment reassembly code is vulnerable to a denial of service due to excessive system resource consumption. This issue can allow a… CWE-400
 Uncontrolled Resource Consumption
CVE-2018-6923 cpe:2.3:o:freebsd:freebsd:9.3:*
cpe:2.3:o:freebsd:freebsd:9.2:*
cpe:2.3:o:freebsd:freebsd:9.1:*
cpe:2.3:o:free…
2024-11-21 13:11
2018-09-5
Show GitHub Exploit DB Packet Storm
139 5.3
5.0
MEDIUM
Network
One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. Th… CWE-400
 Uncontrolled Resource Consumption
CVE-2018-6922 cpe:2.3:o:freebsd:freebsd:11.2:-
cpe:2.3:o:freebsd:freebsd:11.1:p9
cpe:2.3:o:freebsd:freebsd:11.1:p7
cpe:2.3:o…
2024-11-21 13:11
2018-08-10
Show GitHub Exploit DB Packet Storm
140 9.8
7.5
CRITICAL
Network
Improper bounds checking of the obuf variable in the link_ntoa() function in linkaddr.c of the BSD libc library may allow an attacker to read or write from memory. The full impact and severity depend… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-6559 cpe:2.3:o:freebsd:freebsd:9.3:*
cpe:2.3:o:freebsd:freebsd:11.0:*
cpe:2.3:o:freebsd:freebsd:10.3:*
cpe:2.3:o:fr…
2024-11-21 11:56
2018-07-14
Show GitHub Exploit DB Packet Storm