CVE-2013-5666

Name of the Vulnerable Software and Affected Versions FreeBSD versions 9.2-RC1 through 9.2-RC2

Description The issue is related to the sendfile system-call implementation in the kernel, which does not properly pad transmissions. This allows local users to obtain sensitive information, specifically kernel memory, by using a length greater than the length of the file.

Recommendations For FreeBSD versions 9.2-RC1 through 9.2-RC2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.