FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- devfs rules not applied by default for jails

Affected packages
10.0 <= FreeBSD < 10.0_2

Details

VuXML ID 6b6ca5b6-6007-11e6-a6c3-14dae9d210b8
Discovery 2014-04-30
Entry 2016-08-11

Problem Description:

The default devfs rulesets are not loaded on boot, even when jails are used. Device nodes will be created in the jail with their normal default access permissions, while most of them should be hidden and inaccessible.

Impact:

Jailed processes can get access to restricted resources on the host system. For jailed processes running with superuser privileges this implies access to all devices on the system. This level of access could lead to information leakage and privilege escalation.

References

CVE Name CVE-2014-3001
FreeBSD Advisory SA-14:07.devfs