CVE-2010-2693
published 2010-07-13CVE-2010-2693: FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial…
PriorityP430high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.70%
48.4th percentile
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freebsd | freebsd | — | — |
| freebsd | freebsd | — | — |
| freebsd | freebsd | — | — |
| freebsd | freebsd | — | — |
| freebsd | freebsd | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3gm6-xhv6-72q8: FreeBSD 7
ghsa_unreviewed·2022-05-17
CVE-2010-2693 [HIGH] GHSA-3gm6-xhv6-72q8: FreeBSD 7
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.
BSD
FreeBSD-SA-10:07.mbuf: Lost mbuf flag resulting in data corruption
bsd_advisories·2010-07-13·CVSS 7.2
CVE-2010-2693 [HIGH] FreeBSD-SA-10:07.mbuf: Lost mbuf flag resulting in data corruption
FreeBSD-SA-10:07.mbuf Security Advisory
The FreeBSD Project
Topic: Lost mbuf flag resulting in data corruption
Category: core
Module: kern
Announced: 2010-07-13
Credits: Ming Fu
Affects: FreeBSD 7.x and later.
Corrected: 2010-07-13 02:45:17 UTC (RELENG_8, 8.1-PRERELEASE)
2010-07-13 02:45:17 UTC (RELENG_8_1, 8.1-RELEASE)
2010-07-13 02:45:17 UTC (RELENG_8_0, 8.0-RELEASE-p4)
2010-07-13 02:45:17 UTC (RELENG_7, 7.3-STABLE)
2010-07-13 02:45:17 UTC (RELENG_7_3, 7.3-RELEASE-p2)
2010-07-13 02:45:17 UTC (RELENG_7_1, 7.1-RELEASE-p13)
CVE Name: CVE-2010-2693
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit .
I. Background
An mbuf is a basic unit of memory management in the FreeBSD
No detection rules found.
http://secunia.com/advisories/40567http://security.freebsd.org/advisories/FreeBSD-SA-10:07.mbuf.aschttp://www.securityfocus.com/bid/41577http://www.securitytracker.com/id?1024182http://www.vupen.com/english/advisories/2010/1787http://secunia.com/advisories/40567http://security.freebsd.org/advisories/FreeBSD-SA-10:07.mbuf.aschttp://www.securityfocus.com/bid/41577http://www.securitytracker.com/id?1024182http://www.vupen.com/english/advisories/2010/1787
2010-07-13
Published