vulnerability
FreeBSD: VID-E261E71C-6250-11EE-8E38-002590C1F29C (CVE-2023-5369): FreeBSD -- copy_file_range insufficient capability rights check
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:S/C:C/I:C/A:N) | Oct 3, 2023 | Oct 4, 2023 | Jan 28, 2025 |
Severity
6
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:N)
Published
Oct 3, 2023
Added
Oct 4, 2023
Modified
Jan 28, 2025
Description
Before correction, the copy_file_range system call checked only for the CAP_READ and CAP_WRITE capabilities on the input and output file descriptors, respectively. Using an offset is logically equivalent to seeking, and the system call must additionally require the CAP_SEEK capability.
This incorrect privilege check enabled sandboxed processes with only read or write but no seek capability on a file descriptor to read data from or write data to an arbitrary location within the file corresponding to that file descriptor.
Solution
freebsd-upgrade-base-13_2-release-p4
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.