CVE-2016-1887 in FreeBSD信息

摘要

由 VulDB • 2026-06-10

FreeBSD 10.1(p34之前版本)、10.2(p17之前版本)和10.3(p3之前版本)中sys/kern/uipc_syscalls.c的sockargs函数存在整数符号错误。本地用户可通过传入负的buflen参数触发基于堆的缓冲区溢出,从而导致拒绝服务(内存覆盖及内核恐慌)或提升权限。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!