FreeBSD Kernel amd64_set_ldt Heap Overflow DoS

The amd64_set_ldt() function in sys/amd64/amd64/sys_machdep.c in the FreeBSD kernel code is prone to an integer signedness error when processing a system call with specially crafted parameters originated from user space. This issue ultimately leads to a kernel heap overflow, which can be used by unprivileged local attackers to cause a kernel panic and crash the machine.
Vulnerabilty ID: 
Product Version: 
Released Date: 
Tuesday, March 22, 2016 - 00:00