vulnerability

FreeBSD: VID-ff82610f-b309-11e9-a87f-a4badb2f4699 (CVE-2019-5601): FreeBSD -- Kernel stack disclosure in UFS/FFS

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:P/I:N/A:N)	Jul 30, 2019	Jul 31, 2019	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:N/A:N)

Published

Jul 30, 2019

Added

Jul 31, 2019

Modified

Dec 10, 2025

Description

Problem Description: A bug causes up to three bytes of kernel stack memory to be written to disk as uninitialized directory entry padding. This data can be viewed by any user with read access to the directory. Additionally, a malicious user with write access to a directory can cause up to 254 bytes of kernel stack memory to be exposed. Impact: Some amount of the kernel stack is disclosed and written out to the filesystem.

Solutions

freebsd-upgrade-base-12_0-release-p7freebsd-upgrade-base-11_2-release-p11

References

CVE-2019-5601
https://attackerkb.com/topics/CVE-2019-5601
CWE-200

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today