The qls_eioctl function in sys/dev/qlxge/qls_ioctl.c in the kernel in FreeBSD 10 and earlier does not validate a certain size parameter, which allows local users to obtain sensitive information from kernel memory via a crafted ioctl call.
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2013-11-21T02:00:00

Updated: 2013-11-23T18:10:04

Reserved: 2013-11-20T00:00:00


Link: CVE-2013-6833

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2013-11-21T04:40:59.190

Modified: 2013-11-25T04:36:31.987


Link: CVE-2013-6833

JSON object: View

cve-icon Redhat Information

No data.

CWE