Back to search
CVE-2014-3880
Published: Jun 10, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The (1) execve and (2) fexecve system calls in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 10.0 before p4 destroys the virtual memory address space and mappings for a process before all threads have terminated, which allows local users to cause a denial of service (triple-fault and system reboot) via a crafted system call, which triggers an invalid page table pointer dereference.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-2952
vendor-advisory
x_refsource_DEBIAN
59034
third-party-advisory
x_refsource_SECUNIA
http://www.freebsd.org/security/advisories/FreeBSD-EN-14%3A06.exec.asc
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now