Home > Vulnerability Database > CVE-2017-1086

Mend.io Vulnerability Database

CVE-2017-1086

Date: November 16, 2017

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24, not all information in the struct ptrace_lwpinfo is relevant for the state of any thread, and the kernel does not fill the irrelevant bytes or short strings. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of information of the kernel stack of the thread is possible from the debugger. As a result, some bytes from the kernel stack of the thread using ptrace (PT_LWPINFO) call can be observed in userspace.

Severity Score

3.3

Related Resources (5)

Url: http://www.securityfocus.com/bid/101861

Url: http://www.securitytracker.com/id/1039809

Url: https://nvd.nist.gov/vuln/detail/CVE-2017-1086

Url: https://www.freebsd.org/security/advisories/FreeBSD-SA-17:08.ptrace.asc

Url: https://www.mend.io/vulnerability-database/CVE-2017-1086

Severity Score

3.3

Weakness Type (CWE)

Information Leak / Disclosure

CWE-200

CVSS v3

Base Score:	3.3
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2017-1086

Date: November 16, 2017

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3

CVSS v2

Do you need more information?