SB2019020701 - Information disclosure in NetBSD

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2019020701

SB2019020701 - Information disclosure in NetBSD

Published: February 7, 2019

Security Bulletin ID SB2019020701
Severity
Low
Patch available
YES
Number of vulnerabilities 16
Exploitation vector Local access
Highest impact Information disclosure

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 16 secuirty vulnerabilities.


1) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to four bytes of kernel stack were leaked in the ntp_gettime system call. A local attacker can obtain data from kernel memory.

2) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to eight bytes of kernel stack were leaked when executing execve. A local attacker can obtain data from kernel memory.

3) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to many bytes of kernel stack were leaked when processing signals on several architectures. A local attacker can obtain data from kernel memory.

4) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to four bytes of kernel stack were leaked in several system calls related to time. A local attacker can obtain data from kernel memory.

5) Information disclosure (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to an inverted logic in netbsd32 caused some kernel memory bytes to wrongfully be copied to userland. A local attacker can obtain data from kernel memory.

6) Information disclosure (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to a missing sanity check in a sysctl caused a severe kernel memory disclosure. A local attacker can obtain data from kernel memory.

7) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to four bytes of kernel stack were leaked in the kevent system call. A local attacker can obtain data from kernel memory.

8) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to eight bytes of kernel stack were leaked in the gettimer system call. A local attacker can obtain data from kernel memory.

9) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to two bytes of kernel heap were leaked in the net.rtable sysctl. A local attacker can obtain data from kernel memory.

10) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to many bytes of kernel stack were leaked in the swapctl system call. A local attacker can obtain data from kernel memory.

11) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to sixteen bytes of kernel heap were leaked in the settime system call. A local attacker can obtain data from kernel memory.

12) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to four bytes of kernel heap were leaked in the sigaction_sigtramp system call. A local attacker can obtain data from kernel memory.

13) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to many bytes of kernel stack were leaked in the ptrace system call. A local attacker can obtain data from kernel memory.

14) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to four bytes of kernel stack were leaked in the wait6 system call. A local attacker can obtain data from kernel memory.

15) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to four bytes of kernel stack were leaked in the sigtimedwait system call. A local attacker can obtain data from kernel memory.

16) Memory leak (CVE-ID: N/A)

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to many bytes of kernel stack were leaked in the msgctl system call implemented in the compatibility layers. A local attacker can obtain data from kernel memory.

Remediation

Install update from vendor's website.

References