Local Denial of Service in OpenBSD 6.2 and 6.3 due to I/O Port Access Issues
CVE-2018-14775

5.5MEDIUM

Key Information:

Vendor

OpenBSD
Status
OpenBSD
Vendor
CVE Published:
1 August 2018

What is CVE-2018-14775?

The tss_alloc function in the OpenBSD operating system's i386 architecture is vulnerable to a Local Denial of Service. This vulnerability arises from improper control of I/O port access, which can lead to system crashes on versions 6.2 and 6.3. Attackers can exploit this issue to disrupt system operations, making it crucial to apply available patches to mitigate risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/arch/i38...
x_refsource_MISC
https://ftp.openbsd.org/pub/OpenBSD/patches/6.3/common/01...
x_refsource_MISC
https://ftp.openbsd.org/pub/OpenBSD/patches/6.2/common/02...
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.