Versions Affected : All verisons prior to FreeNAS 11.3-U3.2


Description

A race condition permitted a data structure in the kernel to be used after it was freed by the cryptodev module.

An unprivileged process can overwrite arbitrary kernel memory.


Workaround

Unload the cryptodev kernel module if it is loaded:


Mitigation

  • Upgrade to FreeNAS 11.3-U3.2 or later.

Commit


Further information