The sendfile system call in FreeBSD 4.8 up to and including 4.11 and 5 up to and including 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote malicious users to obtain sensitive information.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
dragonflybsd dragonflybsd 1.1 |
||
freebsd freebsd 4.0 |
||
freebsd freebsd 4.10 |
||
freebsd freebsd 4.3 |
||
freebsd freebsd 4.5 |
||
freebsd freebsd 4.6 |
||
freebsd freebsd 4.7 |
||
freebsd freebsd 4.8 |
||
freebsd freebsd 4.9 |
||
freebsd freebsd 5.1 |
||
freebsd freebsd 5.3 |
||
dragonflybsd dragonflybsd 1.0 |
||
freebsd freebsd 4.1.1 |
||
freebsd freebsd 5.0 |
||
freebsd freebsd 5.2.1 |
||
freebsd freebsd 4.11 |
||
freebsd freebsd 4.2 |
||
freebsd freebsd 4.4 |
||
freebsd freebsd 5.4 |
||
freebsd freebsd 4.1 |
||
freebsd freebsd 4.6.2 |
||
freebsd freebsd 5.2 |
Vulmon