NetBSD Information for VU#358960

BSD i386_set_ldt syscall does not appropriately validate call gate targets

Status

Affected

Vendor Statement

NetBSD is vulnerable on x86 platforms only. Please see NetBSD-SA2001-002, "Vulnerability in x86 USER_LDT validation":

ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2001-002.txt.asc

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.