5 matches found
FreeBSD多个本地内存泄露漏洞
BUGTRAQ ID: 16373 CVECAN ID: CVE-2006-0379,CVE-2006-0380 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码的Unix类系统。 FreeBSD的内核实现上存在多个漏洞,可能导致向非授权用户泄露内核内存信息。 一个漏洞是由于内核向用户态缓冲区复制数据时没有正确地清除原有内容,另一个漏洞是由于向用户缓冲区复制了过多的数据。 FreeBSD FreeBSD 6.0-STABLE FreeBSD FreeBSD 6.0-RELEASE FreeBSD FreeBSD 5.4-RELENG FreeBSD FreeBSD...
FreeBSD Security Advisory FreeBSD-SA-06:06.kmem
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:06.kmem Security Advisory The FreeBSD Project Topic: Local kernel memory disclosure Category: core Module: kernel Announced: 2006-01-25 Credits: Xin LI, Karl...
CVE-2006-0380
FreeBSD CVE-2006-0380 (and CVE-2006-0379) affects 5.4-STABLE and 6.0 kernels. A logic error in computing a buffer length can copy too much data to userland, potentially disclosing portions of kernel memory. Impact is local memory disclosure; no workaround is listed in the advisory. Mitigation: up...
FreeBSD-SA-06:06.kmem
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:06.kmem Security Advisory The FreeBSD Project Topic: Local kernel memory disclosure Category: core Module: kernel Announced: 2006-01-25 Credits: Xin LI, Karl...
FreeBSD -- Local kernel memory disclosure
Problem description: A buffer allocated from the kernel stack may not be completely initialized before being copied to userland. CVE-2006-0379 A logic error in computing a buffer length may allow too much data to be copied into userland. CVE-2006-0380 Impact: Portions of kernel memory may be...