97 matches found
CVE-2016-1880
The Linux compatibility layer in the kernel in FreeBSD 9.3, 10.1, and 10.2 allows local users to read portions of kernel memory and potentially gain privilege via unspecified vectors, related to "handling of Linux futex robust lists."...
Netscaler Instances on SDX show less memory than allocated from within the SVM Console
Question: When I allocate RAM to a Netscaler instance on SDX, the Netscaler reports considerably less memory than is allocated. For instance, if I allocate 16gb, the Netscaler instance shows only 12gb allocated. Answer: This is an expected behavior. When NetScaler is started and is initializing t...
FreeBSD Kernel (FreeBSD 10.2 x64) - sendmsg Kernel Heap Overflow (PoC)
FreeBSD Kernel FreeBSD 10.2 x64 - sendmsg Kernel Heap Overflow PoC include include include include include include include include include include void atagetxportvoid; int kprintfconst char fmt, ...; char ostype; void resolvechar name struct kldsymlookup ksym; ksym.version = sizeofksym;...
FreeBSD Kernel (FreeBSD 10.2 < 10.3 x64) - 'SETFKEY' (PoC)
include include include include include include include include include include include include int kprintfconst char fmt, ...; char ostype; uint64t originalRip; uint64t originalRbp; void resolvechar name struct kldsymlookup ksym; ksym.version = sizeofksym; ksym.symname = name; ifkldsym0,...
FreeBSD Kernel amd64_set_ldt Heap Overflow Vulnerability
FreeBSD is a UNIX operating system. An integer signature error in the amd64setldt function in the kernel code of versions prior to FreeBSD 10.2-RELENG can lead to a kernel heap overflow, which can cause a system crash in a local attacker...
FreeBSD Kernel sys_amd64 IRET Processor Denial of Service Vulnerability
FreeBSD is a BSD-based operating system. FreeBSD has a security vulnerability that allows local users to return SS or NP anomalous IRETs that can lead to denial of service or elevation of privilege...
NVIDIA GPU for FreeBSD Driver Vulnerability
FreeBSD is a type of UNIX operating system, an important branch of Unix that evolved from BSD, 386BSD and 4.4BSD. A security vulnerability exists in the NVIDIA GPU for FreeBSD driver, which can be exploited by a local attacker to write or read arbitrary kernel memory with certain privileges...
Debian Security Advisory DSA 3070-1 (kfreebsd-9 - security update)
Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or information disclosure. CVE-2014-3711 Denial of service through memory leak in sandboxed namei lookups. CVE-2014-3952 Kernel memory disclosure in sockbuf control messages. CVE-2014-3953 Kern...
Debian: Security Advisory (DSA-3070-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-3880
The 1 execve and 2 fexecve system calls in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 10.0 before p4 destroys the virtual memory address space and mappings for a process before all threads have terminated, which allows local users to cause a denial of service triple-fau...
Null pointer dereference
The 1 execve and 2 fexecve system calls in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 10.0 before p4 destroys the virtual memory address space and mappings for a process before all threads have terminated, which allows local users to cause a denial of service triple-fau...
CVE-2014-3880
Removed by vendor...
CVE-2014-3880
The 1 execve and 2 fexecve system calls in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 10.0 before p4 destroys the virtual memory address space and mappings for a process before all threads have terminated, which allows local users to cause a denial of service triple-fau...
CVE-2014-3873
The CVE-2014-3873 issue affects FreeBSD where the ktrace kernel tracing entry size was set incorrectly for 8.4 (before p11), 9.1 (before p14), 9.2 (before p7), and 9.3-BETA1 (before p1). This allows a local user with kernel process tracing enabled to read contents of kernel memory (e.g., file cac...
Debian DSA-2952-1 : kfreebsd-9 - security update
Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or possibly disclosure of kernel memory. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-1453 A remote, authenticated attacker could cause the NF...
Debian: Security Advisory (DSA-2952-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-6832
The nandioctl function in sys/dev/nand/nandgeom.c in the nand driver in the kernel in FreeBSD 10 and earlier does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via a crafted ioctl call...
Debian DSA-2769-1 : kfreebsd-9 - privilege escalation/denial of service
Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-5691 Loganaden Velvindron and Gleb Smirnoff discovered that the...
CVE-2013-3077
Multiple integer overflows in the IPMSFILTER and IPV6MSFILTER features in 1 sys/netinet/inmcast.c and 2 sys/netinet6/in6mcast.c in the multicast implementation in the kernel in FreeBSD 8.3 through 9.2-PRERELEASE allow local users to bypass intended restrictions on kernel-memory read and write...
[SECURITY] [DSA 2743-1] kfreebsd-9 security update
---------------------------------------------------------------------- Debian Security Advisory DSA-2743-1 [email protected] http://www.debian.org/security/ Aurelien Jarno August 27, 2013 http://www.debian.org/security/faq - ----------------------------------------------------------------------...