Description
Integer overflow in the systrace_preprepl function (STRIOCREPLACE) in systrace in OpenBSD 3.9 and NetBSD 3 allows local users to cause a denial of service (crash), gain privileges, or read arbitrary kernel memory via large numeric arguments to the systrace ioctl.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29392
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/29570
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/22324
Exploit x_refsource_misc
http://scary.beasts.org/security/CESA-2006-003.html
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20392
Patch vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017009
Patch vendor-advisory
x_refsource_openbsd
http://openbsd.org/errata.html#systrace
Scores
EPSS
0.0008
EPSS Percentile
22.8%
Details
Status
published
Products (3)
netbsd/netbsd
3.0
openbsd/openbsd
3.8
openbsd/openbsd
3.9
Published
Oct 10, 2006
Tracked Since
Feb 18, 2026