QwikSec

Security Database

CVE

CWE

Training

CVE-2006-0145

Published: Jan 9, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The kernfs_xread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

http://www.securitylab.net/research/2006/02/advisory_netbsd_openbsd_kernfs.html

x_refsource_MISC

third-party-advisory

x_refsource_SREASON

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_OSVDB

netbsd-kernfs-memory-disclosure(24035)

vdb-entry

x_refsource_XF

20060202 [SLAB] NetBSD / OpenBSD kernfs_xread patch evasion

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.