DSA-3070-1 kfreebsd-9 -- kfreebsd-9ID: oval:org.secpod.oval:def:601825 | Date: (C)2014-11-14 (M)2021-09-12 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or information disclosure. CVE-2014-3711 Denial of service through memory leak in sandboxed namei lookups. CVE-2014-3952 Kernel memory disclosure in sockbuf control messages. CVE-2014-3953 Kernel memory disclosure in SCTP. This update disables SCTP, since the userspace tools shipped in Wheezy didn"t support SCTP anyway. CVE-2014-8476 Kernel stack disclosure in setlogin and getlogin.