FreeBSD crushes system-crashing bug

Posted on

Sysadmins ought to patch their FreeBSD systems after an irritating bug was found in the kernel.

A programming blunder involving integer signedness can be exploited by a logged-in user to crash a system. With the right parameters, you can trick the kernel into clearing too much of its heap memory with zeros via the sysarch system call, which will eventually lead to a kernel panic.

 French bulldog puppy wears plastic devil horns and cute expression. Photo by Shutterstock

The bug was discovered by researchers at Core Security, who alerted the FreeBSD team on March 2, and patches were released on March 16. The flaw is present in all supported versions of FreeBSD.

A technical description of the bug and proof-of-concept code to trigger it can be found in an advisory from Core Security here. Other details of the vulnerability from the FreeBSD team are available over here.



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s