CVE-2009-3527

Name of the Vulnerable Software and Affected Versions FreeBSD versions 6.3 through 6.4

Description A race condition exists in the Pipe (IPC) close function, which can be exploited by local users to cause a denial of service (crash) or gain privileges. This issue is related to kqueues and can trigger a use after free, resulting in a NULL pointer dereference or memory corruption.

Recommendations For FreeBSD versions 6.3 and 6.4, consider applying a patch or updating to a newer version to resolve the issue. As a temporary workaround, restrict access to the Pipe (IPC) close function to minimize the risk of exploitation.