VYPR
Unrated severityNVD Advisory· Published Jul 26, 2019· Updated Aug 4, 2024

CVE-2019-5605

CVE-2019-5605

Description

In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, due to insufficient initialization of memory copied to userland in the freebsd32_ioctl interface, small amounts of kernel memory may be disclosed to userland processes. This may allow an attacker to leverage this information to obtain elevated privileges either directly or indirectly.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • FreeBSD/FreeBSDllm-fuzzy2 versions
    11.2-RELEASE < 11.2-RELEASE-p12, 11.3-RELEASE < 11.3-RELEASE-p1, 11.3-STABLE < r350217+ 1 more
    • (no CPE)range: 11.2-RELEASE < 11.2-RELEASE-p12, 11.3-RELEASE < 11.3-RELEASE-p1, 11.3-STABLE < r350217
    • (no CPE)range: FreeBSD 11.x

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.