Description
Certain "programming errors" in the msync system call for FreeBSD 5.2.1 and earlier, and 4.10 and earlier, do not properly handle the MS_INVALIDATE operation, which leads to cache consistency problems that allow a local user to prevent certain changes to files from being committed to disk.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/10416
Various Sources vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:11.msync.asc
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/11714
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16254
Scores
EPSS
0.0008
EPSS Percentile
23.7%
Details
Status
published
Products (6)
freebsd/freebsd
4.0 releng
freebsd/freebsd
4.8 (4 CPE variants)
freebsd/freebsd
4.9 (3 CPE variants)
freebsd/freebsd
4.10 (3 CPE variants)
freebsd/freebsd
5.2
freebsd/freebsd
5.2.1 release (2 CPE variants)
Published
Aug 18, 2004
Tracked Since
Feb 18, 2026