Insufficient Validation in ELF Header Parser in FreeBSD

Insufficient Validation in ELF Header Parser in FreeBSD

CVE-2018-6924 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:N/A:C

In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p3, 11.1-RELEASE-p14, 10.4-STABLE, and 10.4-RELEASE-p12, insufficient validation in the ELF header parser could allow a malicious ELF binary to cause a kernel crash or disclose kernel memory.

Learn more about our Web Application Penetration Testing UK.