NetBSD 1.4 up to and including 1.6 beta allows local users to cause a denial of service (kernel panic) via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by other processes.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netbsd netbsd 1.4.1 |
||
netbsd netbsd 1.4.2 |
||
netbsd netbsd 1.6 |
||
netbsd netbsd 1.4.3 |
||
netbsd netbsd 1.5.2 |
||
netbsd netbsd 1.5 |
||
netbsd netbsd 1.4 |
||
netbsd netbsd 1.5.1 |
||
netbsd netbsd 1.5.3 |