CVE-2016-1886
Last modified
CVE-2016-1886 is a vulnerability of currently unknown severity. Integer signedness error in the genkbd_commonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory overwrite and kernel crash), or gain privileges via a negative value in the flen structure member in the arg argument in a SETFKEY ioctl call, which triggers a "two way heap and stack overflow.". EPSS estimates a 1.14% chance of exploitation in the next 30 days.
Description
Integer signedness error in the genkbd_commonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory overwrite and kernel crash), or gain privileges via a negative value in the flen structure member in the arg argument in a SETFKEY ioctl call, which triggers a "two way heap and stack overflow."
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 9.3 |
| Freebsd | Freebsd | 10.1 |
| Freebsd | Freebsd | 10.2 |
| Freebsd | Freebsd | 10.3 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-1886?
How severe is CVE-2016-1886?
How do I fix CVE-2016-1886?
Are you affected by CVE-2016-1886?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST