Null pointer dereference

libprop/propobject.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service NULL pointer dereference and kernel panic via a malformed externalized plist XML form containing an undefined element...

CVE-2009-2483

The CVE-2009-2483 entry affects NetBSD 4.0 and 4.0.1 via libprop/prop_object.c in proplib. A local attacker can trigger a denial of service by supplying a malformed externalized plist (XML form) containing an undefined element, causing a NULL pointer dereference and kernel panic. The connected do...

CVE-2009-2483

libprop/propobject.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service NULL pointer dereference and kernel panic via a malformed externalized plist XML form containing an undefined element...

NetBSD proplib库XML处理拒绝服务漏洞

BUGTRAQ ID: 35466 NetBSD是一款免费开放源代码的UNIX性质的操作系统。 NetBSD的proplib库在处理外部XML表单中的未定义元素（如number）时可能触发空指针引用。所有使用proplib库进行内核通讯的驱动都受这个漏洞影响，因此能够访问驱动的普通用户就可以导致系统崩溃。 NetBSD 4.0.1 NetBSD 4.0 厂商补丁： NetBSD ------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.netbsd.org/Security/...