Allele Security Alert
ASA-2019-00469
Identifier(s)
ASA-2019-00469, CVE-2019-5605, FreeBSD-SA-19:14.freebsd32
Title
Kernel memory disclosure in freebsd32_ioctl
Vendor(s)
The FreeBSD Project
Product(s)
FreeBSD
Affected version(s)
FreeBSD version 11.2
FreeBSD version 11.3
Fixed version(s)
2019-07-22 18:14:34 UTC (stable/11, 11.2-STABLE)
2019-07-24 12:54:10 UTC (releng/11.2, 11.2-RELEASE-p12)
2019-07-24 12:54:10 UTC (releng/11.3, 11.3-RELEASE-p1)
Proof of concept
Unknown
Description
Due to insufficient initialization of memory copied to userland in the components listed above small amounts of kernel memory may be disclosed to userland processes.
A user who can invoke 32-bit FreeBSD ioctls may be able to read the contents of small portions of kernel memory.
Such memory might contain sensitive information, such as portions of the file cache or terminal buffers. This information might be directly useful, or it might be leveraged to obtain elevated privileges in some way; for example, a terminal buffer might include a user-entered password.
Technical details
Unknown
Credits
Ilja van Sprundel (IOActive)
Reference(s)
FreeBSD-SA-19:14.freebsd32
https://www.freebsd.org/security/advisories/FreeBSD-SA-19:14.freebsd32.asc
freebsd32.patch
https://security.FreeBSD.org/patches/SA-19:14/freebsd32.patch
Avoid kernel memory disclosure in freebsd32_ioctl_pciocgetconf
https://svnweb.freebsd.org/base?view=revision&revision=r350217
Fix kernel memory disclosure in freebsd32_ioctl.
https://svnweb.freebsd.org/base?view=revision&revision=r350283
CVE-2019-5605
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5605
CVE-2019-5605
https://nvd.nist.gov/vuln/detail/CVE-2019-5605
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: August 1, 2019