VYPR
Unrated severityNVD Advisory· Published Sep 15, 1997· Updated Jun 16, 2026

CVE-1999-1214

CVE-1999-1214

Description

The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • BSD/BSD2 versions
    cpe:2.3:o:bsd:bsd:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:bsd:bsd:*:*:*:*:*:*:*:*
    • cpe:2.3:o:bsd:bsd:4.4:*:*:*:*:*:*:*
  • cpe:2.3:o:freebsd:freebsd:6.2:stable:*:*:*:*:*:*
  • cpe:2.3:o:netbsd:netbsd:2.0.4:*:*:*:*:*:*:*
  • cpe:2.3:o:openbsd:openbsd:2.1:*:*:*:*:*:*:*
  • cpe:2.3:o:sgi:irix:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.