Denial of Service Vulnerability in BSD Semaphores by OpenBSD, NetBSD, and FreeBSD
CVE-2000-0461

Currently unrated

Key Information:

Vendor: FreeBSD
Status: FreeBSD; Netbsd
Vendor: CVE Published:; 29 May 2000

What is CVE-2000-0461?

The semconfig system call in BSD allows local users to manipulate the state of semaphores, leading to a potential denial of service. This undocumented feature can freeze semaphore states, effectively crashing the semaphore subsystem and disrupting system operations. This vulnerability affects all users across OpenBSD, NetBSD, and FreeBSD systems, making it a significant concern for system administrators.

References

http://www.openbsd.org/errata26.html#semconfig

vendor-advisoryx_refsource_OPENBSD

ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/...

vendor-advisoryx_refsource_NETBSD

http://www.securityfocus.com/bid/1270

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Jun 14, 2000
Vulnerability published
May 29, 2000