CVE-2005-4783 | Vulnerability Database | Aqua Security

kernfs_xread in kernfs_vnops.c in NetBSD before 20050831 does not check for a negative offset when reading the message buffer, which allows local users to read arbitrary kernel memory.

Affected Software

Name	Vendor	Start Version	End Version
Netbsd	Netbsd	1.6 (including)	1.6 (including)
Netbsd	Netbsd	2.0 (including)	2.0 (including)
Netbsd	Netbsd	2.0.3 (including)	2.0.3 (including)
Netbsd	Netbsd	2.1 (including)	2.1 (including)

References

http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/miscfs/kernfs/kernfs_vnops.c
http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/miscfs/kernfs/kernfs_vnops.c.diff?r1=1.110\u0026r2=1.111\u0026f=h
http://mail-index.netbsd.org/netbsd-announce/2005/10/31/0000.html
http://releng.netbsd.org/cgi-bin/req-3.cgi?show=727
http://securitytracker.com/id?1015132
http://www.osvdb.org/20729
http://www.packetstormsecurity.org/0601-advisories/NetBSD-SA2006-001.txt
http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/miscfs/kernfs/kernfs_vnops.c
http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/miscfs/kernfs/kernfs_vnops.c.diff?r1=1.110\u0026r2=1.111\u0026f=h
http://mail-index.netbsd.org/netbsd-announce/2005/10/31/0000.html
http://releng.netbsd.org/cgi-bin/req-3.cgi?show=727
http://securitytracker.com/id?1015132
http://www.osvdb.org/20729
http://www.packetstormsecurity.org/0601-advisories/NetBSD-SA2006-001.txt

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4783
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html