Null pointer dereference

2020-09-0315:15:00

PRIOn knowledge base

www.prio-n.com

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

In MidnightBSD before 1.2.6 and 1.3 before August 2020, and FreeBSD before 7, a NULL pointer dereference was found in the Linux emulation layer that allows attackers to crash the running kernel. During binary interaction, td->td_emuldata in sys/compat/linux/linux_emul.h is not getting initialized and returns NULL from em_find().

CPENameOperatorVersion
freebsdle7.0
midnightbsdge1.3
midnightbsdle2020
midnightbsdlt1.2.6

Name	Operator	Version
freebsd	le	7.0
midnightbsd	ge	1.3
midnightbsd	le	2020
midnightbsd	lt	1.2.6

References

www.midnightbsd.org/security/adv/MIDNIGHTBSD-SA-20:02.txt

www.midnightbsd.org/notes/