CVE Vulnerabilities

CVE-2013-5691

Published: Sep 23, 2013 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.9 MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

The (1) IPv6 and (2) ATM ioctl request handlers in the kernel in FreeBSD 8.3 through 9.2-STABLE do not validate SIOCSIFADDR, SIOCSIFBRDADDR, SIOCSIFDSTADDR, and SIOCSIFNETMASK requests, which allows local users to perform link-layer actions, cause a denial of service (panic), or possibly gain privileges via a crafted application.

Affected Software

Name Vendor Start Version End Version
Freebsd Freebsd 8.3 (including) 8.3 (including)
Freebsd Freebsd 9.0 (including) 9.0 (including)
Freebsd Freebsd 9.1 (including) 9.1 (including)
Freebsd Freebsd 9.2 (including) 9.2 (including)

References