Description
A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel to calculate an incorrect buffer length, which causes more data to be copied to userland than intended, which could allow local users to read portions of kernel memory.
References (6)
Core 6
Core References
Various Sources vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:06.kmem.asc
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18599
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015541
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/22731
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24340
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16373
Scores
EPSS
0.0008
EPSS Percentile
23.0%
Details
Status
published
Products (2)
freebsd/freebsd
5.4 stable
freebsd/freebsd
6.0 stable
Published
Jan 25, 2006
Tracked Since
Feb 18, 2026