25 Juil 2019
Vulnérabilité CVE-2019-5606 CVE Vulnerability
In FreeBSD 12.0-STABLE before r349805, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r349806, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, code which handles close of a descriptor created by posix_openpt fails to undo a signal configuration. This causes an incorrect signal to be raised leading to a write after free of kernel memory allowing a malicious user to gain root privileges or escape a jail. (CVSS:0.0) (Last Update:2019-07-26)
Vulnerability Details : In FreeBSD 12.0-STABLE before r349805, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r349806, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, code which handles close of a descriptor created by posix_openpt fails to undo a signal configuration. This causes an incorrect signal to be raised leading to a write after free of kernel memory allowing a malicious user to gain root privileges or escape a jail. Publish Date : 2019-07-25 Last Update Date : 2019-07-26 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-5606
- References For CVE-2019-5606
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-5606There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |