An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when dealing with native file systems. An attacker can craft an input that can cause a buffer overflow in the nm variable leading to an out of bounds memory access and could result in potential privilege escalation. This vulnerability is distinct from CVE-2016-9034.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2016-12-14T17:00:00
Updated: 2024-08-06T02:42:09.441Z
Reserved: 2016-10-26T00:00:00
Link: CVE-2016-9032
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-12-14T17:59:04.017
Modified: 2024-11-21T03:00:28.570
Link: CVE-2016-9032
Redhat
No data.