CVE-2006-0380
First published: Wed Jan 25 2006(Updated: )
A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel to calculate an incorrect buffer length, which causes more data to be copied to userland than intended, which could allow local users to read portions of kernel memory.
Credit: secteam@freebsd.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeBSD Kernel | =5.4-stable | |
| FreeBSD Kernel | =6.0-stable |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2006-0380?
CVE-2006-0380 is classified as a high-severity vulnerability due to the potential for local users to read portions of kernel memory.
How does CVE-2006-0380 affect system security?
CVE-2006-0380 allows local users to exploit a logic error in the FreeBSD kernel, leading to unauthorized access to sensitive kernel memory.
Which versions of FreeBSD are affected by CVE-2006-0380?
CVE-2006-0380 affects FreeBSD versions 5.4-STABLE and 6.0-STABLE.
How do I fix CVE-2006-0380?
To mitigate CVE-2006-0380, users should upgrade to a patched version of FreeBSD that addresses the vulnerability.
Is CVE-2006-0380 a remote or local vulnerability?
CVE-2006-0380 is a local vulnerability, meaning it can only be exploited by users with local access to the system.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/remedy
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/freebsd
- canonical/freebsd kernel
- version/freebsd kernel/5.4-stable
- version/freebsd kernel/6.0-stable