FreeBSD 6.x特权提升漏洞

FreeBSD是一款开放源代码的操作系统。 FreeBSD存在多个安全问题： -Kqueues相关的pipe "close"实现存在一个释放后使用错误，可导致可利用的Null指针漏洞，内核内存破坏和其他不可预测结果。成功利用漏洞可导致特权提升，内核数据破坏或崩溃。 -在多数结构中，FreeBSD把进程虚拟内存地址空间划分为用户和内核两块。当进程进入内核时通过避免全局地址控件切换来提升系统调用性能，并且提升内核访问用户内存的性能。...

Race condition

Race condition in the Pipe IPC close function in FreeBSD 6.3 and 6.4 allows local users to cause a denial of service crash or gain privileges via vectors related to kqueues, which triggers a use after free, leading to a NULL pointer dereference or memory corruption...

CVE-2009-3527

Race condition in the Pipe IPC close function in FreeBSD 6.3 and 6.4 allows local users to cause a denial of service crash or gain privileges via vectors related to kqueues, which triggers a use after free, leading to a NULL pointer dereference or memory corruption...

CVE-2009-3527

Race condition in the Pipe IPC close function in FreeBSD 6.3 and 6.4 allows local users to cause a denial of service crash or gain privileges via vectors related to kqueues, which triggers a use after free, leading to a NULL pointer dereference or memory corruption...

CVE-2009-3527

CVE-2009-3527: Concrete details exist in connected docs. A race condition in FreeBSD 6.3/6.4’s Pipe (IPC) close function can lead to a use-after-free via kqueues, causing local denial of service (crash) or privilege gain through NULL pointer dereference/memory corruption. Affected software: FreeB...

FreeBSD Security Advisory (FreeBSD-SA-09:13.pipe.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:13.pipe.asc SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...