FreeBSD Kernel amd64_set_ldt Heap Overflow

Posted by deepcore on March 18, 2016 – 6:27 am

Core Security Technologies Advisory – An integer signedness error has been found in the amd64_set_ldt() function in the FreeBSD kernel code (define d in the /sys/amd64/amd64/sys_machdep.c file), which implements the i386_set_ldt system call on the amd64 version of the OS. This integer signedness issue ultimately leads to a heap overflow in the kernel, allowing local unprivileged attackers to crash the system. FreeBSD 10.2 amd64 is affected.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Yahoo Email Spoofing AKIPS Network Monitor 16.5 OS Command Injection »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

FreeBSD Kernel amd64_set_ldt Heap Overflow

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL