Multiple BSD Kernel iBCS2 Memory Disclosure

Network Security News – Thursday, December 15, 2005 Events

Multiple BSD Kernel iBCS2 Memory Disclosure

FreeBSD and NetBSD contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious user sends an overly long length parameter to the iBCS2 system call translator for statfs(2), which will disclose kernel memory information resulting in a loss of confidentiality.. Read more at osvdb.org/2406

Multiple BSD libc realpath() Off-by-one Overflow

A local overflow exists in BSD-derived libc libraries. The realpath() function fails to validate user input resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/6602

Multiple BSD mbufs Out-of-Sequence TCP Packet DoS

FreeBSD and OpenBSD contain a flaw that may allow a remote denial of service. The issue is triggered when multiple out-of-sequence tcp packets are sent, and will result in loss of availability for the platform.. Read more at osvdb.org/4124