FreeBSD Security Advisory (FreeBSD-SA-05:03.amd64.asc) Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:03.amd64.asc

Solution

Upgrade your system to the appropriate stable release or security branch dated after the correction date https://secure1.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-05:03.amd64.asc

Insight

The AMD64 architecture has two mechanisms for permitting processes to access hardware: Kernel code can access hardware directly by reason of its elevated privilege level, while user code can access a subset of hardware determined by a bitmap. The bitmap which determines which hardware can be accessed by unprivileged processes was not initialized properly.

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

FreeBSD Ports: bind99
FreeBSD Ports: chromium
FreeBSD Ports: apache+mod_ssl
FreeBSD Ports: bugzilla
FreeBSD Ports: c-ares

Take action and discover your vulnerabilities