This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
13d37672-9791-11eb-b87a-901b0ef719ab | FreeBSD -- Memory disclosure by stale virtual memory mappingProblem Description:A particular case of memory sharing is mishandled in the virtual memory system. It is possible and legal to establish a relationship where multiple descendant processes share a mapping which shadows memory of an ancestor process. In this scenario, when one process modifies memory through such a mapping, the copy-on-write logic fails to invalidate other mappings of the source page. These stale mappings may remain even after the mapped pages have been reused for another purpose. Impact:An unprivileged local user process can maintain a mapping of a page after it is freed, allowing that process to read private data belonging to other processes or the kernel. Discovery 2021-04-06 Entry 2021-04-07 FreeBSD-kernel ge 12.2 lt 12.2_6 ge 11.4 lt 11.4_9 CVE-2021-29626 SA-21:08.vm |