FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
BID:9992
Info
FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
| Bugtraq ID: | 9992 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 29 2004 12:00AM |
| Updated: | Mar 29 2004 12:00AM |
| Credit: | This issue was disclosed by the vendor. |
| Vulnerable: |
FreeBSD FreeBSD 5.2 -RELEASE |
| Not Vulnerable: | |
Discussion
FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
It has been reported that FreeBSD may be prone to a local memory disclosure vulnerability that may allow an attacker to access sensitive memory locations without proper validation. This is a result of improper handling of some IPv6 socket options.
FreeBSD employs the KAME Project IPv6 implementation, however, this issue does not affect other operating systems.
FreeBSD 5.2-RELEASE is reported to be affected by this vulnerability.
It has been reported that FreeBSD may be prone to a local memory disclosure vulnerability that may allow an attacker to access sensitive memory locations without proper validation. This is a result of improper handling of some IPv6 socket options.
FreeBSD employs the KAME Project IPv6 implementation, however, this issue does not affect other operating systems.
FreeBSD 5.2-RELEASE is reported to be affected by this vulnerability.
Exploit / POC
FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
Solution:
A patch has been deployed to address this issue. The following files have been updated to correct this vulnerability:
Branch Revision
Path
- -------------------------------------------------------------------------
RELENG_5_2
src/UPDATING 1.282.2.12
src/sys/netinet6/ip6_output.c 1.71.2.2
src/sys/netinet/ip6.h 1.10.2.1
src/sys/conf/newvers.sh 1.56.2.11
- -------------------------------------------------------------------------
FreeBSD FreeBSD 5.2 -RELEASE
Solution:
A patch has been deployed to address this issue. The following files have been updated to correct this vulnerability:
Branch Revision
Path
- -------------------------------------------------------------------------
RELENG_5_2
src/UPDATING 1.282.2.12
src/sys/netinet6/ip6_output.c 1.71.2.2
src/sys/netinet/ip6.h 1.10.2.1
src/sys/conf/newvers.sh 1.56.2.11
- -------------------------------------------------------------------------
FreeBSD FreeBSD 5.2 -RELEASE
-
FreeBSD ipv6.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-04:06/ipv6.patch -
FreeBSD ipv6.patch.asc
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-04:06/ipv6.patch.asc
References
FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
References:
References: