CVE-2025-0662

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)

Description The ktrace facility logs the contents of kernel structures to userspace. In one case, ktrace dumps a variable-sized sockaddr to userspace, copying the full sockaddr even when it is shorter than the full size. This results in up to 14 uninitialized bytes of kernel memory being copied out to userspace. An unprivileged userspace program can leak 14 bytes of a kernel heap allocation to userspace.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.