Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The nand_ioctl function in sys/dev/nand/nand_geom.c in the nand driver in the kernel in FreeBSD 10 and earlier does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via a crafted ioctl call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD ‘nand_ioctl’函数信息泄露漏洞
Vulnerability Description
FreeBSD是由Core Team团队负责的FreeBSD项目中的一套类Unix自由操作系统,是经过BSD、386BSD和4.4BSD发展而来的类Unix的一个重要分支。 FreeBSD 10及之前的版本中的nand驱动程序中的sys/dev/nand/nand_geom.c文件中的‘nand_ioctl’函数存在信息泄露漏洞,该漏洞源于程序没有正确初始化某些数据结构。本地攻击者可通过特制的ioctl调用利用该漏洞获取内核内存中的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A