CVE-2024-25941

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)

Description The issue is related to incorrect process locking in the jail(2) system call, which can lead to an information leak about processes outside the current jail. An attacker can exploit this to gain unauthorized access to protected information. The vulnerability allows an attacker to get information about TTYs allocated on the host or in other jails, effectively leaking information that may be printed by "pstat -t".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.