N/A

In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, system calls operating on file descriptors as part of mqueuefs did not properly release the reference allowing a malicious user to overflow the counter allowing access to files, directories, and sockets opened by processes owned by other users.

N/A

N/A

FreeBSD mqueuefs 权限许可和访问控制问题漏洞

FreeBSD是FreeBSD基金会的一套类Unix操作系统。mqueuefs是使用在其中的一个POSIX消息队列文件系统支持模块。 FreeBSD mqueuefs中存在安全漏洞。本地攻击者可利用该漏洞获取其他用户进程所打开文件、目录、网络编程接口等的访问权限。

N/A

N/A