Computer Security
[EN] securityvulns.ru no-pyccku


FreeBSD / NetBSD Coda file system information leak
Published:19.08.2010
Source:
SecurityVulns ID:11084
Type:local
Threat Level:
5/10
Description:Kernel memory information leak via IOCTL.
CVE:CVE-2010-3014 (The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap memory via a large out_size value in a ViceIoctl struct to a Coda ioctl, which triggers a buffer over-read.)
Original documentdocumentVSR Advisories, CVE-2010-3014: Coda Filesystem Kernel Memory Disclosure (19.08.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod