MNBSD-2013-2: Integer overflow in IP_MSFILTER multicast source filter handling

Severity: Unknown

Affected Package: kernel

Summary: Integer overflow in IP_MSFILTER multicast source filter handling

Description

An integer overflow when computing the size of a temporary buffer in the IP_MSFILTER (and IPV6_MSFILTER) multicast implementation can produce a buffer that is too small for the requested operation. An unprivileged local process can exploit this to read or write kernel memory, leading to information disclosure or privilege escalation. Patch obtained from FreeBSD.

Affected Versions

kernel

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2013-3077

Published: August 22, 2013
Last Modified: August 22, 2013