FreeBSD : FreeBSD -- Information leak in kldstat(2) (759059ac-dab3-11e7-b5af-a4badb2f4699)
Low Nessus Plugin ID 105066
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe kernel does not properly clear the memory of the kld_file_stat structure before filling the data. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of information from the kernel stack is possible. Impact : Some bytes from the kernel stack can be observed in userspace.
SolutionUpdate the affected packages.