CVE-2009-1935

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 6.3 through 6.4 FreeBSD versions 7.1 through 7.2

Description: The issue is related to an integer overflow in the pipe build write buffer function, which is part of the direct write optimization feature in the pipe implementation. This allows local users to bypass virtual-to-physical address lookups and potentially read sensitive information in memory pages.

Recommendations: For FreeBSD versions 6.3 through 6.4, update to a version that includes the fix for the integer overflow in the pipe build write buffer function. For FreeBSD versions 7.1 through 7.2, update to a version that includes the fix for the integer overflow in the pipe build write buffer function. As a temporary workaround, consider restricting access to the pipe implementation to minimize the risk of exploitation.