A memory corruption vulnerability was found in the kernel function kern_getfsstat in MidnightBSD prior to 1.2.7 and 1.3 through 2020-08-19, and FreeBSD up to and including 11.4, that allows an malicious user to trigger an invalid free and crash the system via a crafted size value in conjunction with an invalid mode.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
midnightbsd midnightbsd |
||
freebsd freebsd |