漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Multiple vulnerabilities in the sound(4) mmap path
Vulnerability Description
Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping remained valid. The freed memory could then be reused elsewhere while still accessible through the stale mapping. The /dev/dsp device nodes are world-accessible by default. On a system with an audio device, either issue allows an unprivileged local user to read and write kernel memory, which can be used to escalate privileges, potentially gaining full control of the affected system. At a minimum, an attacker can crash the kernel, resulting in a Denial of Service (DoS).
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
FreeBSD 资源管理错误漏洞
Vulnerability Description
FreeBSD是FreeBSD基金会开源的一套类Unix操作系统。 FreeBSD存在资源管理错误漏洞,该漏洞源于设备关闭时音频缓冲区映射释放后重用,可能导致未授权的本地用户读写内核内存、提升权限或导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A