vulnerability
FreeBSD: VID-7b6a11b5-600a-11e6-a6c3-14dae9d210b8 (CVE-2016-1885): FreeBSD -- Incorrect argument validation in sysarch(2)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:N/I:N/A:C) | Aug 11, 2016 | Dec 10, 2025 | Dec 10, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:N/I:N/A:C)
Published
Aug 11, 2016
Added
Dec 10, 2025
Modified
Dec 10, 2025
Description
Problem Description: A special combination of sysarch(2) arguments, specify a request to uninstall a set of descriptors from the LDT. The start descriptor is cleared and the number of descriptors are provided. Due to lack of sufficient bounds checking during argument validity verification, unbound zero'ing of the process LDT and adjacent memory can be initiated from usermode. Impact: This vulnerability could cause the kernel to panic. In addition it is possible to perform a local Denial of Service against the system by unprivileged processes.
Solutions
freebsd-upgrade-base-11_0-release-p2freebsd-upgrade-base-10_3-release-p11freebsd-upgrade-base-10_2-release-p24freebsd-upgrade-base-10_1-release-p41freebsd-upgrade-base-9_3-release-p49
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.