vulnerability
FreeBSD: VID-13D37672-9791-11EB-B87A-901B0EF719AB (CVE-2021-29626): FreeBSD -- Memory disclosure by stale virtual memory mapping
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | Apr 6, 2021 | Nov 4, 2022 | Nov 4, 2022 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
Apr 6, 2021
Added
Nov 4, 2022
Modified
Nov 4, 2022
Description
In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11.4-STABLE before r369559, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, copy-on-write logic failed to invalidate shared memory page mappings between multiple processes allowing an unprivileged process to maintain a mapping after it is freed, allowing the process to read private data belonging to other processes or the kernel.
Solutions
freebsd-upgrade-base-11_4-release-p9freebsd-upgrade-base-12_2-release-p6
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.