Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2017-10-12 xen-kernel -- multiple vulnerabilities
2017-04-06 xen-kernel -- broken check in memory_exchange() permits PV guest breakout
2016-12-22 xen-kernel -- x86 PV guests may be able to mask interrupts
2016-12-20 xen-kernel -- x86: Mishandling of SYSCALL singlestep during emulation
2016-12-14 xen-kernel -- x86 CMPXCHG8B emulation fails to ignore operand size override
2016-12-04 xen-kernel -- CR0.TS and CR0.EM not always honored for x86 HVM guests
xen-kernel -- guest 32-bit ELF symbol table load leaking host data
xen-kernel -- use after free in FIFO event channel code
xen-kernel -- x86 64-bit bit test instruction emulation broken
xen-kernel -- x86 HVM: Overflow of sh_ctxt->seg_reg[]
xen-kernel -- x86 null segments not always treated as unusable
xen-kernel -- x86 segment base write emulation lacking canonical address checks
xen-kernel -- x86 task switch to VM86 mode mis-handled
xen-kernel -- x86: Disallow L3 recursive pagetable for 32-bit PV guests
xen-kernel -- x86: Mishandling of instruction pointer truncation during emulation
2016-08-02 xen-kernel -- x86: Missing SMAP whitelisting in 32-bit exception / event delivery
xen-kernel -- x86: Privilege escalation in PV guests
2016-07-04 xen-kernel -- x86 shadow pagetables: address width overflow
xen-kernel -- x86 software guest page walk PS bit handling flaw
2016-02-28 xen-kernel -- PV superpage functionality missing sanity checks
xen-kernel -- VMX: guest user mode may crash guest with non-canonical RIP
xen-kernel -- VMX: intercept issue with INVLPG on non-canonical address
2016-01-06 xen-kernel -- information leak in legacy x86 FPU/XMM initialization
xen-kernel -- ioreq handling possibly susceptible to multiple read issue
xen-kernel -- XENMEM_exchange error handling issues
2015-11-16 xen-kernel -- CPU lockup during exception delivery
2015-11-11 xen-kernel -- leak of main per-domain vcpu pointer array
xen-kernel -- leak of per-domain profiling-related vcpu pointer array
xen-kernel -- Long latency populate-on-demand operation is not preemptible
xen-kernel -- some pmu and profiling hypercalls log without rate limiting
xen-kernel -- Uncontrolled creation of large page mappings by PV guests
2015-07-11 xen-kernel -- arm: vgic-v2: GICD_SGIR is not properly emulated
xen-kernel -- arm: vgic: incorrect rate limiting of guest triggered logging
xen-kernel -- Certain domctl operations may be abused to lock up the host
xen-kernel -- GNTTABOP_swap_grant_ref operation misbehavior
xen-kernel -- Hypervisor memory corruption due to x86 emulator flaw
xen-kernel -- Information leak through version information hypercall
xen-kernel -- Information leak through XEN_DOMCTL_gettscinfo
xen-kernel -- Information leak via internal x86 system device emulation
xen-kernel -- vulnerability in the iret hypercall handler
xen-kernel and xen-tools -- Long latency MMIO mapping operations are not preemptible