FreeBSD -- Missing validation in ptrace(PT_SC_REMOTE)

Problem Description:

ptrace(PT_SC_REMOTE) failed to properly validate parameters for the syscall(2) and __syscall(2) meta-system calls. As a result, a user with the ability to debug a process may trigger arbitrary code execution in the kernel, even if the target process has no special privileges.

Impact:

The missing validation allows an unprivileged local user to escalate privileges, potentially gaining full control of the affected system.