High severity7.8NVD Advisory· Published Nov 16, 2017· Updated May 13, 2026

CVE-2017-1087

Description

In FreeBSD 10.x before 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24 named paths are globally scoped, meaning a process located in one jail can read and modify the content of POSIX shared memory objects created by a process in another jail or the host system. As a result, a malicious user that has access to a jailed system is able to abuse shared memory by injecting malicious content in the shared memory region. This memory region might be executed by applications trusting the shared memory, like Squid. This issue could lead to a Denial of Service or local privilege escalation.

Affected products

FreeBSD/FreeBSD2 versions
cpe:2.3:o:freebsd:freebsd:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:freebsd:freebsd:-:*:*:*:*:*:*:*
- (no CPE)range: FreeBSD 10.x

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/101867nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1039810nvdThird Party AdvisoryVDB Entry
www.freebsd.org/security/advisories/FreeBSD-SA-17:09.shm.ascnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000