CVE-2011-2480

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl allows a local unprivileged user to cause the kernel to copy large amounts of kernel memory back to the user, disclosing potentially sensitive information.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:-:*:*:*:*:*:x86:*

History

No history.

Information

Published : 2019-11-27 19:15

Updated : 2024-02-04 20:39


NVD link : CVE-2011-2480

Mitre link : CVE-2011-2480

CVE.ORG link : CVE-2011-2480


JSON object : View

Products Affected

netbsd

  • netbsd

freebsd

  • freebsd
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor