CVE-2023-5941

Name of the Vulnerable Software and Affected Versions FreeBSD versions 12.4-RELEASE prior to 12.4-RELEASE-p7 FreeBSD versions 13.2-RELEASE prior to 13.2-RELEASE-p5

Description The sflush() stdio function in libc does not correctly update FILE objects' write space members for write-buffered streams when the write(2) system call returns an error. Depending on the nature of an application that calls libc's stdio functions and the presence of errors returned from the write(2) system call, a heap buffer overflow may occur. Such overflows may lead to data corruption or the execution of arbitrary code at the privilege level of the calling program.

Recommendations For FreeBSD versions 12.4-RELEASE prior to 12.4-RELEASE-p7, update to 12.4-RELEASE-p7 or later. For FreeBSD versions 13.2-RELEASE prior to 13.2-RELEASE-p5, update to 13.2-RELEASE-p5 or later. As a temporary workaround, consider restricting the use of the sflush() function in libc until a patch is available.