CVE-2019-15875

EUVD-2019-6786
In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r354735, and 11.3-RELEASE before 11.3-RELEASE-p6, due to incorrect initialization of a stack data structure, core dump files may contain up to 20 bytes of kernel data previously stored on the stack.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.3 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
Affected Products (NVD)
VendorProductVersion
freebsdfreebsd
11.3
freebsdfreebsd
11.3:p1
freebsdfreebsd
11.3:p2
freebsdfreebsd
11.3:p3
freebsdfreebsd
11.3:p4
freebsdfreebsd
11.3:p5
freebsdfreebsd
12.0
freebsdfreebsd
12.0:p1
freebsdfreebsd
12.0:p10
freebsdfreebsd
12.0:p11
freebsdfreebsd
12.0:p12
freebsdfreebsd
12.0:p2
freebsdfreebsd
12.0:p3
freebsdfreebsd
12.0:p4
freebsdfreebsd
12.0:p6
freebsdfreebsd
12.0:p7
freebsdfreebsd
12.0:p8
freebsdfreebsd
12.0:p9
freebsdfreebsd
12.1
freebsdfreebsd
12.1:p1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:03.thrmisc.asc
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:03.thrmisc.asc