Date: Wed, 6 Dec 2017 18:29:50 +0000 (UTC) From: Mark Felder <feld@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r455671 - head/security/vuxml Message-ID: <201712061829.vB6IToKx047574@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: feld Date: Wed Dec 6 18:29:50 2017 New Revision: 455671 URL: https://svnweb.freebsd.org/changeset/ports/455671 Log: Document FreeBSD-SA-17:09.shm Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Wed Dec 6 18:29:05 2017 (r455670) +++ head/security/vuxml/vuln.xml Wed Dec 6 18:29:50 2017 (r455671) @@ -58,6 +58,42 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="5b1463dd-dab3-11e7-b5af-a4badb2f4699"> + <topic>FreeBSD -- POSIX shm allows jails to access global namespace</topic> + <affects> + <package> + <name>FreeBSD-kernel</name> + <range><ge>10.4</ge><lt>10.4_3</lt></range> + <range><ge>10.3</ge><lt>10.3_24</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <h1>Problem Description:</h1> + <p>Named paths are globally scoped, meaning a process located + in one jail can read and modify the content of POSIX shared + memory objects created by a process in another jail or the + host system.</p> + <h1>Impact:</h1> + <p>A malicious user that has access to a jailed system is + able to abuse shared memory by injecting malicious content + in the shared memory region. This memory region might be + executed by applications trusting the shared memory, like + Squid.</p> + <p>This issue could lead to a Denial of Service or local + privilege escalation.</p> + </body> + </description> + <references> + <cvename>CVE-2017-1087</cvename> + <freebsdsa>SA-17:09.shm</freebsdsa> + </references> + <dates> + <discovery>2017-11-15</discovery> + <entry>2017-12-06</entry> + </dates> + </vuln> + <vuln vid="34a3f9b5-dab3-11e7-b5af-a4badb2f4699"> <topic>FreeBSD -- Kernel data leak via ptrace(PT_LWPINFO)</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201712061829.vB6IToKx047574>