CVE-2006-1797

Name of the Vulnerable Software and Affected Versions NetBSD-current versions prior to September 28, 2005

Description The issue allows local users to cause a system crash by using the SIOCGIFALIAS ioctl to gather information on a non-existent alias of a network interface, resulting in a NULL pointer dereference.

Recommendations For NetBSD-current versions prior to September 28, 2005, update to a version released after September 28, 2005 to resolve the issue. As a temporary workaround, consider restricting access to the SIOCGIFALIAS ioctl to minimize the risk of exploitation.