FreeBSD Invalid Signal Number Kernel Memory Modification

2003-08-10T00:00:00
ID OSVDB:5989
Type osvdb
Reporter OSVDB
Modified 2003-08-10T00:00:00

Description

Vulnerability Description

FreeBSD contains a flaw that may allow a malicious user to modify kernel memory. The issue is triggered when a malicious user sends an invalid signal number to either the ptrace(2) system call or the `spigot' video capture device driver. It is possible that the flaw may allow a complete system compromise, resulting in a loss of confidentiality, integrity, and/or availability.

Solution Description

Upgrade to version 4.8-STABLE, or to any of the RELENG_4_8 (4.8-RELEASE-p2), RELENG_4_7 (4.7-RELEASE-p12), or RELENG_5_1 (5.1-RELEASE-p1) security branches or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

FreeBSD contains a flaw that may allow a malicious user to modify kernel memory. The issue is triggered when a malicious user sends an invalid signal number to either the ptrace(2) system call or the `spigot' video capture device driver. It is possible that the flaw may allow a complete system compromise, resulting in a loss of confidentiality, integrity, and/or availability.

References:

Vendor URL: http://www.freebsd.org Vendor Specific Advisory URL Security Tracker: 1007482 Secunia Advisory ID:9503 Related OSVDB ID: 2404 ISS X-Force ID: 12893 Bugtraq ID: 8387