FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Incorrect argument handling in sendmsg(2)

Affected packages
10.3 <= FreeBSD-kernel < 10.3_3
10.2 <= FreeBSD-kernel < 10.2_17
10.1 <= FreeBSD-kernel < 10.1_34

Details

VuXML ID 7c0bac69-600a-11e6-a6c3-14dae9d210b8
Discovery 2016-05-17
Entry 2016-08-11

Problem Description:

Incorrect argument handling in the socket code allows malicious local user to overwrite large portion of the kernel memory.

Impact:

Malicious local user may crash kernel or execute arbitrary code in the kernel, potentially gaining superuser privileges.

References

CVE Name CVE-2016-1887
FreeBSD Advisory SA-16:19.sendmsg