CVE-2006-6013

Name of the Vulnerable Software and Affected Versions DragonFlyBSD (affected versions not specified) FreeBSD version 5.5 MidnightBSD versions prior to 0.1-CURRENT 20061115 NetBSD versions prior to 4.0 20061203 NetBSD-current versions prior to 20061116 TrustedBSD (affected versions not specified)

Description The issue is caused by an integer signedness error in the fw ioctl function, specifically when handling certain negative values of crom buf->len in an FW GCROM command. This allows local users to read arbitrary memory contents.

Recommendations For DragonFlyBSD, at the moment, there is no information about a newer version that contains a fix for this issue. For FreeBSD version 5.5, at the moment, there is no information about a newer version that contains a fix for this issue. For MidnightBSD versions prior to 0.1-CURRENT 20061115, at the moment, there is no information about a newer version that contains a fix for this issue. For NetBSD versions prior to 4.0 20061203, at the moment, there is no information about a newer version that contains a fix for this issue. For NetBSD-current versions prior to 20061116, at the moment, there is no information about a newer version that contains a fix for this issue. For TrustedBSD, at the moment, there is no information about a newer version that contains a fix for this issue.