QwikSec

Security Database

CVE

CWE

Training

CVE-2016-1885

Published: Apr 8, 2016

Modified: Aug 5, 2024

PUBLISHED

Description

Integer signedness error in the amd64_set_ldt function in sys/amd64/amd64/sys_machdep.c in FreeBSD 9.3 before p39, 10.1 before p31, and 10.2 before p14 allows local users to cause a denial of service (kernel panic) via an i386_set_ldt system call, which triggers a heap-based buffer overflow.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

exploit

x_refsource_EXPLOIT-DB

FreeBSD-SA-16:15

vendor-advisory

x_refsource_FREEBSD

http://www.coresecurity.com/advisories/freebsd-kernel-amd64setldt-heap-overflow

x_refsource_MISC

20160316 [CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow

mailing-list

x_refsource_FULLDISC

20160317 Re: [CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow

mailing-list

x_refsource_FULLDISC

vdb-entry

x_refsource_SECTRACK

20160316 Re: [FD] [CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow

mailing-list

x_refsource_BUGTRAQ

20160316 [CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow

mailing-list

x_refsource_BUGTRAQ

http://packetstormsecurity.com/files/136276/FreeBSD-Kernel-amd64_set_ldt-Heap-Overflow.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.