Openbsd » Openbsd : Security Vulnerabilities, CVEs, Published In 1999

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted.

Buffer overflow in OpenBSD procfs and fdescfs file systems via uio_offset in the readdir() function.

OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices.

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.

Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD.

Buffer overflow in OpenBSD ping.

OpenBSD crash using nlink value in FFS and EXT2FS filesystems.

OpenBSD kernel crash through TSS handling, as caused by the crashme program.

Denial of service in "poll" in OpenBSD.

A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service.

ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets.