CVE-2010-3014
N/A
N/A
Summary
The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap memory via a large out_size value in a ViceIoctl struct to a Coda ioctl, which triggers a buffer over-read.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/coda/coda.h.diff?r1=1.15&r2=1.16&only_with_tag=MAIN
- http://www.vsecurity.com/resources/advisory/20100816-1/
- http://svn.freebsd.org/viewvc/base?view=revision&revision=210997
- http://www.securityfocus.com/archive/1/513151/100/0/threaded
References
- http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/coda/coda.h.diff?r1=1.15&r2=1.16&only_with_tag=MAIN
- http://www.vsecurity.com/resources/advisory/20100816-1/
- http://svn.freebsd.org/viewvc/base?view=revision&revision=210997
- http://www.securityfocus.com/archive/1/513151/100/0/threaded
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.