Unrated severityNVD Advisory· Published Feb 12, 2019· Updated Aug 4, 2024
CVE-2019-5596
CVE-2019-5596
Description
In FreeBSD 11.2-STABLE after r338618 and before r343786, 12.0-STABLE before r343781, and 12.0-RELEASE before 12.0-RELEASE-p3, a bug in the reference count implementation for UNIX domain sockets can cause a file structure to be incorrectly released potentially allowing a malicious local user to gain root privileges or escape from a jail.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
211.2-STABLE after r338618 and before r343786; 12.0-STABLE before r343781; 12.0-RELEASE before 12.0-RELEASE-p3+ 1 more
- (no CPE)range: 11.2-STABLE after r338618 and before r343786; 12.0-STABLE before r343781; 12.0-RELEASE before 12.0-RELEASE-p3
- (no CPE)range: FreeBSD 12.0 before 12.0-RELEASE-p3
Patches
Vulnerability mechanics
References
2- security.freebsd.org/advisories/FreeBSD-SA-19:02.fd.ascmitrevendor-advisoryx_refsource_FREEBSD
- packetstormsecurity.com/files/155790/FreeBSD-fd-Privilege-Escalation.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.