FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-27 18:04:16 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
521ce804-52fd-11e8-9123-a4badb2f4699FreeBSD -- Mishandling of x86 debug exceptions

Problem Description:

The MOV SS and POP SS instructions inhibit debug exceptions until the instruction boundary following the next instruction. If that instruction is a system call or similar instruction that transfers control to the operating system, the debug exception will be handled in the kernel context instead of the user context.

Impact:

An authenticated local attacker may be able to read sensitive data in kernel memory, control low-level operating system functions, or may panic the system.


Discovery 2018-05-08
Entry 2018-05-08
FreeBSD-kernel
ge 11.1 lt 11.1_10

ge 10.4 lt 10.4_9

CVE-2018-8897
SA-18:06.debugreg