Andrew Lutomirski

**Name of the Vulnerable Software and Affected Versions** FreeBSD versions 9.3 through 10.1 **Description** The issue is related to the sys amd64 IRET Handler in the kernel, which is associated with insufficient access control. This can be exploited by a local attacker to gain privileges or cause a denial of service, resulting in a kernel panic. **Recommendations** For versions 9.3 and 10.1, consider applying security patches or updates to fix the issue with the sys amd64 IRET Handler in the kernel. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.1.6 **Description** The issue allows local users to gain privileges by triggering an NMI within a certain instruction window due to improper reliance on espfix64 during nested NMI processing in arch/x86/entry/entry 64.S on the x86 64 platform. **Recommendations** For Linux kernel versions prior to 4.1.6, update to version 4.1.6 or later to resolve the issue.