See also

FREEBSD : FreeBSD 9.0

FREEBSD : FreeBSD 8.2

FREEBSD : FreeBSD 7.4

FREEBSD : FreeBSD 8.1

FREEBSD : FreeBSD 7.3

FREEBSD : FreeBSD 8.0

FREEBSD : FreeBSD 7.2

FREEBSD : FreeBSD7.0

FREEBSD : FreeBSD 6.4

FREEBSD : FreeBSD 7.1

FREEBSD : FreeBSD 6.3

FREEBSD : FreeBSD 6.2

FREEBSD : FreeBSD 5.5

FREEBSD : FreeBSD 7.0

FREEBSD : FreeBSD 6.0

Name: FREEBSD : FreeBSD 4.11

	FreeBSD sendfile() information leak updated since 07.04.2005
		If file size it changed content of kernel memory can be disclosured.
6!	Linux / FreeBSD kernel SMBFS/CIFSFS chroot restriction bypass updated since 28.04.2006
		It's possible to traverse chroot directory.
	FreeBSD floating-point unit information leak
		Internal registers state is not completely saved/restored during context switching.
9!	Sendmail mail server race conditions updated since 22.03.2006
		Race conditions on signals processing with setjmp/longjmp allow remote code execution.
6!	FreeBSD IPSec replay attack
		fast_ipsec implementation doesn't increment packet sequence number, allowing replay attack for captured packet.
6!	opie one time password system privilege escalation
		Under some conditions unprivileged user can be validated as 'root'.
6!	ICMP and TCP timestamp attacks to reset TCP connections updated since 13.04.2005
		By using different ICMP packet types and TCP timestamps values it's possible to cause TCP connection resets or performance decrease.
6!	Multiple hardware platforms hyper threading technology systems information leak updated since 13.05.2005
		Unprivileged thread can read data from privileged thread memory from CPU cache memory.
	Multiple FreeBSD vulnerabilities
		/dev/iir weak permissions, kernel memory disclosure.
6!	telnet client multiple buffer overflows updated since 31.03.2005
		env_opt_add(), slc_add_reply() buffer overflows.
	FreeBSD ifconf() information leak
		Buffer may contain a part of kernel memory.