Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Uninitialized kernel memory disclosure via ktrace(2)
Vulnerability Description
In some cases, the ktrace facility will log the contents of kernel structures to userspace. In one such case, ktrace dumps a variable-sized sockaddr to userspace. There, the full sockaddr is copied, even when it is shorter than the full size. This can result in up to 14 uninitialized bytes of kernel memory being copied out to userspace. It is possible for an unprivileged userspace program to leak 14 bytes of a kernel heap allocation to userspace.
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
FreeBSD ktrace 安全漏洞
Vulnerability Description
FreeBSD ktrace是FreeBSD基金会的一个用于跟踪系统调用的工具。 FreeBSD ktrace存在安全漏洞,该漏洞源于允许未授权的用户空间程序在特定条件下泄露内核内存中的未初始化数据。
CVSS Information
N/A
Vulnerability Type
N/A