CVE-2013-5666
FreeBSD 9.2-RC1 and 9.2-RC2 - Kernel Memory Exposure via sendfile System Call
Title source: llmDescription
The sendfile system-call implementation in sys/kern/uipc_syscalls.c in the kernel in FreeBSD 9.2-RC1 and 9.2-RC2 does not properly pad transmissions, which allows local users to obtain sensitive information (kernel memory) via a length greater than the length of the file.
References (4)
Core 4
Core References
Various Sources x_refsource_confirm
http://svnweb.freebsd.org/base?view=revision&revision=255442
Vendor Advisory vendor-advisory
x_refsource_freebsd
http://www.freebsd.org/security/advisories/FreeBSD-SA-13%3a11.sendfile.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/97142
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1029013
Scores
EPSS
0.0007
EPSS Percentile
21.0%
Details
CWE
CWE-200
Status
published
Products (1)
freebsd/freebsd
9.2 rc1 (2 CPE variants)
Published
Sep 23, 2013
Tracked Since
Feb 18, 2026