FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Incorrect argument handling in sendmsg(2)

Affected packages
10.3 <= FreeBSD-kernel < 10.3_3
10.2 <= FreeBSD-kernel < 10.2_17
10.1 <= FreeBSD-kernel < 10.1_34


VuXML ID 7c0bac69-600a-11e6-a6c3-14dae9d210b8
Discovery 2016-05-17
Entry 2016-08-11

Problem Description:

Incorrect argument handling in the socket code allows malicious local user to overwrite large portion of the kernel memory.


Malicious local user may crash kernel or execute arbitrary code in the kernel, potentially gaining superuser privileges.


CVE Name CVE-2016-1887
FreeBSD Advisory SA-16:19.sendmsg