Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
mpr/mps/mpt driver ioctl heap out-of-bounds write
Vulnerability Description
Handlers for *_CFG_PAGE read / write ioctls in the mpr, mps, and mpt drivers allocated a buffer of a caller-specified size, but copied to it a fixed size header. Other heap content would be overwritten if the specified size was too small. Users with access to the mpr, mps or mpt device node may overwrite heap data, potentially resulting in privilege escalation. Note that the device node is only accessible to root and members of the operator group.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD 安全漏洞
Vulnerability Description
FreeBSD是Freebsd基金会的一套类Unix操作系统。 FreeBSD存在安全漏洞,该漏洞源于mpr、mps和mpt磁盘收集器驱动程序中存在边界错误。本地攻击者利用该漏洞升级系统上的权限。
CVSS Information
N/A
Vulnerability Type
N/A