CVE-2019-5605
First published: Fri Jul 26 2019(Updated: )
In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, due to insufficient initialization of memory copied to userland in the freebsd32_ioctl interface, small amounts of kernel memory may be disclosed to userland processes. This may allow an attacker to leverage this information to obtain elevated privileges either directly or indirectly.
Credit: secteam@freebsd.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeBSD Kernel | =11.0 | |
| FreeBSD Kernel | =11.2 | |
| FreeBSD Kernel | =11.2-p10 | |
| FreeBSD Kernel | =11.2-p11 | |
| FreeBSD Kernel | =11.2-p2 | |
| FreeBSD Kernel | =11.2-p3 | |
| FreeBSD Kernel | =11.2-p4 | |
| FreeBSD Kernel | =11.2-p5 | |
| FreeBSD Kernel | =11.2-p6 | |
| FreeBSD Kernel | =11.2-p7 | |
| FreeBSD Kernel | =11.2-p8 | |
| FreeBSD Kernel | =11.2-p9 | |
| FreeBSD Kernel | =11.2-rc3 | |
| FreeBSD Kernel | =11.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-5605?
CVE-2019-5605 has a medium severity level due to potential disclosure of kernel memory to userland processes.
How do I fix CVE-2019-5605?
To fix CVE-2019-5605, users should update their FreeBSD systems to the latest patched versions.
Which versions of FreeBSD are affected by CVE-2019-5605?
CVE-2019-5605 affects FreeBSD versions 11.2 before 11.2-RELEASE-p12 and 11.3 before 11.3-RELEASE-p1.
What type of vulnerability is CVE-2019-5605?
CVE-2019-5605 is a memory disclosure vulnerability that allows kernel memory to be exposed to user processes.
Is there a workaround for CVE-2019-5605?
There are no known effective workarounds for CVE-2019-5605 besides applying the necessary updates.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/freebsd
- canonical/freebsd kernel
- version/freebsd kernel/11.0
- version/freebsd kernel/11.2
- version/freebsd kernel/11.2-p10
- version/freebsd kernel/11.2-p11
- version/freebsd kernel/11.2-p2
- version/freebsd kernel/11.2-p3
- version/freebsd kernel/11.2-p4
- version/freebsd kernel/11.2-p5
- version/freebsd kernel/11.2-p6
- version/freebsd kernel/11.2-p7
- version/freebsd kernel/11.2-p8
- version/freebsd kernel/11.2-p9
- version/freebsd kernel/11.2-rc3
- version/freebsd kernel/11.3