← Back

Omniosce

omniosce

4 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Omnios
omnios
4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-43395
5Illumos
JoyentOmniosce+2 more
5Illumos
OmniosOpenindiana+2 more
Apr 14, 2025
Dec 26, 2022
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user can cause a deadlock and...Show more
An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user can cause a deadlock and kernel panic via crafted rename and rmdir calls on tmpfs filesystems. Oracle Solaris 10 and 11 is also affected.Show less
CVE-2020-27678
3Illumos
JoyentOmniosce
3Illumos
OmniosSmartos
Nov 21, 2024
Oct 26, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/libpam/pam_framework.c.
CVE-2020-24718
4Freebsd
NetappOmniosce+1 more
4Clustered Data Ontap
FreebsdOmnios+1 more
Nov 21, 2024
Sep 25, 2020
N/A· v4
8.2 HIGH· v3
7.2 HIGH· v2
bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonstrated by a root user...Show more
bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonstrated by a root user in a container on an Intel system, who can gain privileges by modifying VMCS_HOST_RIP.Show less
CVE-2019-19396
1Omniosce
1Omnios
Nov 21, 2024
Nov 29, 2019
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
illumos, as used in OmniOS Community Edition before r151030y, allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket, because uts/common/inet/ip/ip_attr.c mishand...Show more
illumos, as used in OmniOS Community Edition before r151030y, allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket, because uts/common/inet/ip/ip_attr.c mishandles conn_ixa dereferences.Show less