CVE-2019-5595

Summary

In FreeBSD before 11.2-STABLE(r343782), 11.2-RELEASE-p9, 12.0-STABLE(r343781), and 12.0-RELEASE-p3, kernel callee-save registers are not properly sanitized before return from system calls, potentially allowing some kernel data used in the system call to be exposed.

Affected Software

VendorProductVersion RangeStatus
FreeBSDFreeBSDFreeBSD 11.2 before 11.2-RELEASE-p9 and 12.0 before 12.0-RELEASE-p3affected

Weaknesses

  • Improper Cross-boundary Removal of Sensitive Data

ADP Enrichment

CVE Program Container

Additional References

References