FreeBSD -- Kernel stack disclosure in UFS/FFS
A bug causes up to three bytes of kernel stack memory
to be written to disk as uninitialized directory entry
padding. This data can be viewed by any user with read
access to the directory. Additionally, a malicious user
with write access to a directory can cause up to 254 bytes
of kernel stack memory to be exposed.
Some amount of the kernel stack is disclosed and written
out to the filesystem.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright