CVE-2015-5675

Description

The sys_amd64 IRET Handler in the kernel in FreeBSD 9.3 and 10.1 allows local users to gain privileges or cause a denial of service (kernel panic).

How to fix CVE-2015-5675

To remediate CVE-2015-5675, upgrade the affected package to a fixed version below.

• Debian/kfreebsd-10—upgrade to 10.1~svn274115-10 or later

Is CVE-2015-5675 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 10.1~svn274115-10

CVSS scores

References (5)

• ADVISORYwww.freebsd.org/security/advisories/FreeBSD-SA-15:21.amd64.asc
• WEBpacketstormsecurity.com/files/133335/FreeBSD-Security-Advisory-IRET-Handler-Privilege-Escalation.html
• WEBwww.securityfocus.com/archive/1/536321/100/0/threaded
• WEBwww.securityfocus.com/bid/76485