[原文]verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs.
NetBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when verified exec allows a malicious user to execute specially crafted binaries. This flaw may lead to a loss of integrity.
Upgrade to version 2.0.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.