Computer Security

Security Advisory: Re: [Full-disclosure] FreeBSD <= 6.1 kqueue() NULL pointer dereference
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  BSD systems kevent race conditions

  FreeBSD <= 6.1 kqueue() NULL pointer dereference

  FreeBSD <= 6.1 kqueue() NULL pointer dereference

From:Przemyslaw Frasunek <venglin_(at)_FREEBSD.LUBLIN.PL>
Date:15.09.2009
Subject:Re: [Full-disclosure] FreeBSD <= 6.1 kqueue() NULL pointer dereference

Przemyslaw Frasunek pisze:
> FreeBSD <= 6.1 suffers from classical check/use race condition on SMP

There is yet another kqueue related vulnerability. It affects 6.x, up to
6.4-STABLE. FreeBSD security team was notified on 29th Aug, but there is no
response until now, so I won't publish any details.

Sucessful exploitation yields local root and allows to exit from jail. For now,
you can see demo on:

http://www.vimeo.com/6554787

--
* Fido: 2:480/124 ** WWW: http://www.frasunek.com ** NICHDL: PMF9-RIPE *
* Jabber ID: venglin@czuby.pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ5JIV *
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server