TITLE:
NetBSD Kernfs Kernel Memory Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA18388

VERIFY ADVISORY:
http://secunia.com/advisories/18388/

CRITICAL:
Less critical

IMPACT:
Exposure of sensitive information

WHERE:
Local system

OPERATING SYSTEM:
NetBSD 1.x
http://secunia.com/product/255/

DESCRIPTION:
A vulnerability has been reported in NetBSD, which can be exploited
by malicious, local users to disclose potentially sensitive
information.

The vulnerability is caused due to an input validation error in the
"lseek()" system call. This can be exploited by userlevel
non-privileged process to read arbitrary kernel memory via the kernfs
file system.

SOLUTION:
The vulnerability has been fixed in the following versions:
* NetBSD-current (November 23, 2005)
* NetBSD-1.6 branch (November 29, 2005)

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Ejovi Nuwere from SecurityLab and Christos Zoulas.

ORIGINAL ADVISORY:
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-001.txt.asc

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------