CVE-2008-5736

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 6.4-STABLE FreeBSD version 6.3 before 6.3-RELEASE-p7 FreeBSD version 6.4 before 6.4-RELEASE-p1 FreeBSD version 7.0 before 7.0-RELEASE-p7 FreeBSD version 7.1 before 7.1-RC2 FreeBSD version 7 before 7.1-PRERELEASE

Description The issue allows local users to gain privileges via unknown attack vectors related to function pointers that are not properly initialized for netgraph sockets and bluetooth sockets.

Recommendations For FreeBSD versions prior to 6.4-STABLE, update to 6.4-STABLE or later. For FreeBSD version 6.3 before 6.3-RELEASE-p7, update to 6.3-RELEASE-p7 or later. For FreeBSD version 6.4 before 6.4-RELEASE-p1, update to 6.4-RELEASE-p1 or later. For FreeBSD version 7.0 before 7.0-RELEASE-p7, update to 7.0-RELEASE-p7 or later. For FreeBSD version 7.1 before 7.1-RC2, update to 7.1-RC2 or later. For FreeBSD version 7 before 7.1-PRERELEASE, update to 7.1-PRERELEASE or later.