683c714d-2d91-11e9-bf3e-a4badb2f4699FreeBSD -- System call kernel data register leak

Problem Description:

The callee-save registers are used by kernel and for some of them (%r8, %r10, and for non-PTI configurations, %r9) the content is not sanitized before return from syscalls, potentially leaking sensitive information.


Typically an address of some kernel data structure used in the syscall implementation, is exposed.

Discovery 2019-02-05
Entry 2019-02-11
ge 12.0 lt 12.0_3

ge 11.2 lt 11.2_9
