VYPR
Unrated severityNVD Advisory· Published Feb 2, 2015· Updated Jun 17, 2026

CVE-2014-0998

CVE-2014-0998

Description

Integer signedness error in the vt console driver (formerly Newcons) in FreeBSD 9.3 before p10 and 10.1 before p6 allows local users to cause a denial of service (crash) and possibly gain privileges via a negative value in a VT_WAITACTIVE ioctl call, which triggers an array index error and out-of-bounds kernel memory access.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • FreeBSD/FreeBSD2 versions
    cpe:2.3:o:freebsd:freebsd:10.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:freebsd:freebsd:10.1:*:*:*:*:*:*:*
    • (no CPE)range: 9.3 before p10, 10.1 before p6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.