CVE Vulnerabilities

CVE-2008-3890

Published: Sep 05, 2008 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The kernel in FreeBSD 6.3 through 7.0 on amd64 platforms can make an extra swapgs call after a General Protection Fault (GPF), which allows local users to gain privileges by triggering a GPF during the kernels return from (1) an interrupt, (2) a trap, or (3) a system call.

Affected Software

Name Vendor Start Version End Version
Freebsd Freebsd 6.3 (including) 6.3 (including)
Freebsd Freebsd 7.0 (including) 7.0 (including)

References