CVE-2016-1887

2016-05-25T11:59:03
ID CVE-2016-1887
Type cve
Reporter NVD
Modified 2016-05-26T09:19:18

Description

Integer signedness error in the sockargs function in sys/kern/uipc_syscalls.c in FreeBSD 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to cause a denial of service (memory overwrite and kernel panic) or gain privileges via a negative buflen argument, which triggers a heap-based buffer overflow.