DragonFlyBSD Kernel Audit
← dashboard
DF-0292

Missing privilege check on SIOCG80211 (get path): unpriv info disclosure

Summary

SIOCG80211(:3467) has NO caps_priv_check unlike SIOCS80211(:3472). Any unpriv user: IOC_SCAN_RESULTS, IOC_STA_INFO (peer MACs/RSSI/rates), IOC_WPAIE (peer IEs), IOC_BSSID/SSID. Key material still gated(:107,:836) but metadata/world-readable. Privacy concern on hostap vap.