Date: Wed, 6 Dec 2017 18:29:05 +0000 (UTC) From: Mark Felder <feld@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r455670 - head/security/vuxml Message-ID: <201712061829.vB6IT5cG047457@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: feld Date: Wed Dec 6 18:29:05 2017 New Revision: 455670 URL: https://svnweb.freebsd.org/changeset/ports/455670 Log: Document FreeBSD-SA-17:08.ptrace Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Wed Dec 6 18:28:00 2017 (r455669) +++ head/security/vuxml/vuln.xml Wed Dec 6 18:29:05 2017 (r455670) @@ -58,6 +58,41 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="34a3f9b5-dab3-11e7-b5af-a4badb2f4699"> + <topic>FreeBSD -- Kernel data leak via ptrace(PT_LWPINFO)</topic> + <affects> + <package> + <name>FreeBSD-kernel</name> + <range><ge>11.1</ge><lt>11.1_4</lt></range> + <range><ge>11.0</ge><lt>11.0_15</lt></range> + <range><ge>10.4</ge><lt>10.4_3</lt></range> + <range><ge>10.3</ge><lt>10.3_24</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <h1>Problem Description:</h1> + <p>Not all information in the struct ptrace_lwpinfo is + relevant for the state of any thread, and the kernel does + not fill the irrelevant bytes or short strings. Since the + structure filled by the kernel is allocated on the kernel + stack and copied to userspace, a leak of information of the + kernel stack of the thread is possible from the debugger.</p> + <h1>Impact:</h1> + <p>Some bytes from the kernel stack of the thread using + ptrace(PT_LWPINFO) call can be observed in userspace.</p> + </body> + </description> + <references> + <cvename>CVE-2017-1086</cvename> + <freebsdsa>SA-17:08.ptrace</freebsdsa> + </references> + <dates> + <discovery>2017-11-15</discovery> + <entry>2017-12-06</entry> + </dates> + </vuln> + <vuln vid="1f8de723-dab3-11e7-b5af-a4badb2f4699"> <topic>FreeBSD -- WPA2 protocol vulnerability</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201712061829.vB6IT5cG047457>