CVE-2014-3873 Information

Description

The ktrace utility in the FreeBSD kernel 8.4 before p11 9.1 before p14 9.2 before p7 and 9.3-BETA1 before p1 uses an incorrect page fault kernel trace entry size which allows local users to obtain sensitive information from kernel memory via a kernel process trace.

Reference

http://secunia.com/advisories/58627 http://www.freebsd.org/security/advisories/FreeBSD-SA-143A12.ktrace.asc http://www.securityfocus.com/bid/67812 http://www.securitytracker.com/id/1030325