Robert N. M. Watson

**Name of the Vulnerable Software and Affected Versions** Generic Software Wrappers Toolkit (GSWTK) (affected versions not specified) **Description** The issue is related to multiple race conditions in certain system call wrappers. These race conditions can be exploited by local users to defeat system call interposition, potentially allowing them to gain privileges or bypass auditing. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CerbNG for FreeBSD version 4.8 **Description** The issue involves multiple race conditions found in certain rules and argument copying during VM protection. This could allow local users to defeat system call interposition and possibly gain privileges or bypass auditing. An example of exploitation includes modifying command lines in log-exec.cb. **Recommendations** For CerbNG for FreeBSD version 4.8, consider disabling the affected rules and argument copying during VM protection as a temporary workaround until a patch is available. Restrict access to sensitive areas of the system to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** CerbNG for FreeBSD version 4.8 **Description** The issue is related to the improper implementation of VM protection in CerbNG for FreeBSD, specifically when attempting to prevent system call wrapper races. This allows local users to have an unknown impact due to the incorrect write protection of pages. **Recommendations** For CerbNG for FreeBSD version 4.8, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Systrace on NetBSD and OpenBSD (affected versions not specified) **Description** The issue involves multiple race conditions in the Sudo monitor mode and Sysjail policies within Systrace on NetBSD and OpenBSD. This allows local users to bypass access control policy and auditing by defeating system call interposition. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.