Description
The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kernel memory.
References (6)
Core 6
Core References
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/17312
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/24262
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/19464
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25582
Vendor Advisory vendor-advisory
x_refsource_netbsd
ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2006-005.txt.asc
Patch vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015846
Scores
EPSS
0.0008
EPSS Percentile
23.1%
Details
Status
published
Products (9)
netbsd/netbsd
1.6 (2 CPE variants)
netbsd/netbsd
1.6.1
netbsd/netbsd
1.6.2
netbsd/netbsd
2.0
netbsd/netbsd
2.0.1
netbsd/netbsd
2.0.2
netbsd/netbsd
2.0.3
netbsd/netbsd
2.1
netbsd/netbsd
3.0
Published
Apr 03, 2006
Tracked Since
Feb 18, 2026