CVE-2006-6657

NetBSD < 20061027, 3.0-3.0.1 < 20061027, 2.x < 20061119 - Information Disclosure via Uninitialized Stack Memory

Title source: llm

Description

The if_clone_list function in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before 20061027, and NetBSD 2.x before 20061119 allows local users to read potentially sensitive, uninitialized stack memory via unspecified vectors.

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory x_refsource_netbsd

ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2006-025.txt.asc

Patch, Vendor Advisory vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1017292

Scores

EPSS 0.0006

EPSS Percentile 19.8%

Details

Status published

Products (4)

netbsd/netbsd 2.0

netbsd/netbsd 2.1

netbsd/netbsd 3.0

netbsd/netbsd 3.0.1

Published Dec 20, 2006

Tracked Since Feb 18, 2026