Description
The kernel in FreeBSD 6.3 through 7.0 on amd64 platforms can make an extra swapgs call after a General Protection Fault (GPF), which allows local users to gain privileges by triggering a GPF during the kernel's return from (1) an interrupt, (2) a trap, or (3) a system call.
References (5)
Core 5
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31743
Various Sources vendor-advisory
x_refsource_freebsd
http://security.freebsd.org/advisories/FreeBSD-SA-08:07.amd64.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1020815
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/44905
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/31003
Scores
EPSS
0.0004
EPSS Percentile
14.0%
Details
CWE
CWE-264
Status
published
Products (2)
freebsd/freebsd
6.3
freebsd/freebsd
7.0
Published
Sep 05, 2008
Tracked Since
Feb 18, 2026