CVE-2020-7463

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
freebsdCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
VendorProductVersion
freebsdfreebsd
11.3
freebsdfreebsd
11.3:p1
freebsdfreebsd
11.3:p10
freebsdfreebsd
11.3:p11
freebsdfreebsd
11.3:p12
freebsdfreebsd
11.3:p2
freebsdfreebsd
11.3:p3
freebsdfreebsd
11.3:p4
freebsdfreebsd
11.3:p5
freebsdfreebsd
11.3:p6
freebsdfreebsd
11.3:p7
freebsdfreebsd
11.3:p8
freebsdfreebsd
11.3:p9
freebsdfreebsd
11.4
freebsdfreebsd
11.4:p1
freebsdfreebsd
11.4:p2
freebsdfreebsd
12.1
freebsdfreebsd
12.1:p1
freebsdfreebsd
12.1:p2
freebsdfreebsd
12.1:p3
freebsdfreebsd
12.1:p4
freebsdfreebsd
12.1:p5
freebsdfreebsd
12.1:p6
freebsdfreebsd
12.1:p7
freebsdfreebsd
12.1:p8
freebsdfreebsd
12.2
appleicloud
𝑥
< 12.3
appleitunes
𝑥
< 12.11.3
applesafari
𝑥
< 14.1
appleipados
𝑥
< 14.5
appleiphone_os
𝑥
< 14.5
applemacos
11.0 ≤
𝑥
< 11.3
appletvos
𝑥
< 14.5
applewatchos
𝑥
< 7.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2021/Apr/49
http://seclists.org/fulldisclosure/2021/Apr/50
http://seclists.org/fulldisclosure/2021/Apr/57
http://seclists.org/fulldisclosure/2021/Apr/58
http://seclists.org/fulldisclosure/2021/Apr/59
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:25.sctp.asc
https://support.apple.com/kb/HT212317
https://support.apple.com/kb/HT212318
https://support.apple.com/kb/HT212319
https://support.apple.com/kb/HT212321
https://support.apple.com/kb/HT212323
https://support.apple.com/kb/HT212324
https://support.apple.com/kb/HT212325
http://seclists.org/fulldisclosure/2021/Apr/49
http://seclists.org/fulldisclosure/2021/Apr/50
http://seclists.org/fulldisclosure/2021/Apr/57
http://seclists.org/fulldisclosure/2021/Apr/58
http://seclists.org/fulldisclosure/2021/Apr/59
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:25.sctp.asc
https://support.apple.com/kb/HT212317
https://support.apple.com/kb/HT212318
https://support.apple.com/kb/HT212319
https://support.apple.com/kb/HT212321
https://support.apple.com/kb/HT212323
https://support.apple.com/kb/HT212324
https://support.apple.com/kb/HT212325