Omniosce Omnios R151024 Community Edition

CPE Details

Omniosce Omnios R151024 Community Edition
r151024
2019-12-16
16h34 +00:00
2019-12-16
16h34 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:omniosce:omnios:r151024:*:*:*:community:*:*:*

Informations

Vendor

omniosce

Product

omnios

Version

r151024

Software Edition

community

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-27678 2020-10-23 18h25 +00:00 An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/libpam/pam_framework.c.
9.8
Critical
CVE-2020-24718 2020-09-25 01h49 +00:00 bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonstrated by a root user in a container on an Intel system, who can gain privileges by modifying VMCS_HOST_RIP.
8.2
High
CVE-2019-19396 2019-11-29 20h02 +00:00 illumos, as used in OmniOS Community Edition before r151030y, allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket, because uts/common/inet/ip/ip_attr.c mishandles conn_ixa dereferences.
7.5
High