Uninitialized Directory Entry Padding Vulnerability in FreeBSD 12.0 and 11.2

Uninitialized Directory Entry Padding Vulnerability in FreeBSD 12.0 and 11.2

CVE-2019-5601 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

In FreeBSD 12.0-STABLE before r347474, 12.0-RELEASE before 12.0-RELEASE-p7, 11.2-STABLE before r347475, and 11.2-RELEASE before 11.2-RELEASE-p11, a bug in the FFS implementation causes up to three bytes of kernel stack memory to be written to disk as uninitialized directory entry padding.

Learn more about our Web Application Penetration Testing UK.