Dan Mcdonald

**Name of the Vulnerable Software and Affected Versions** illumos illumos-gate versions before 676abcb **Description** The issue is a stack buffer overflow in /dev/net, which can lead to privilege escalation. This can be achieved via a stat on a long file name in /dev/net. **Recommendations** For versions before 676abcb, update to a version after 676abcb to resolve the issue. As a temporary workaround, consider restricting access to /dev/net to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** illumos versions prior to r151030y **Description** The issue allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket. This is because uts/common/inet/ip/ip attr.c mishandles conn ixa dereferences. **Recommendations** For versions prior to r151030y, update to r151030y or later to resolve the issue. As a temporary workaround, consider restricting concurrent sendmsg calls over a single socket to minimize the risk of exploitation.