Date: Wed, 14 Apr 2021 11:44:06 -0400 From: mike tancsa <mike@sentex.net> To: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org> Subject: name:wrek vulnerabilities ? Message-ID: <e08128b2-dece-b95e-6fae-e408fa2a3ec8@sentex.net>
next in thread | raw e-mail | index | archive | help
I heard about this on the ISC stormcast podcast this AM, but I cant quite make heads or tails of if/when what was patched with respect to FreeBSD. https://www.forescout.com/company/blog/forescout-and-jsof-disclose-new-dn= s-vulnerabilities-impacting-millions-of-enterprise-and-consumer-devices/ They have a dhclient one I think is https://www.freebsd.org/security/advisories/FreeBSD-SA-20:26.dhclient.asc= , but the report somewhat ambiguously writes there is a new one ? "Table 3 =E2=80=93 New vulnerabilities in NAME:WRECK. Rows are colored ac= cording to the CVSS score: yellow for medium or high and red for critical." Yet the CVE ref is the above SA 20:26?! So this is new or this is just a paper talking about a bug patched last August ? =C2=A0=C2=A0=C2=A0 ---Mike
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?e08128b2-dece-b95e-6fae-e408fa2a3ec8>