CVE-2010-2530
29.09.2010, 17:00
Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via a negative size value in a /dev/nsmb ioctl operation, as demonstrated by a (1) SMBIOC_LOOKUP or (2) SMBIOC_OPENSESSION ioctl call.Enginsight
| Vendor | Product | Version |
|---|---|---|
| netbsd | netbsd | 𝑥 ≤ 5.0.2 |
| netbsd | netbsd | 0.8 |
| netbsd | netbsd | 0.9 |
| netbsd | netbsd | 1.0 |
| netbsd | netbsd | 1.1 |
| netbsd | netbsd | 1.2 |
| netbsd | netbsd | 1.2.1 |
| netbsd | netbsd | 1.3 |
| netbsd | netbsd | 1.3.1 |
| netbsd | netbsd | 1.3.2 |
| netbsd | netbsd | 1.3.3 |
| netbsd | netbsd | 1.4 |
| netbsd | netbsd | 1.4.1 |
| netbsd | netbsd | 1.4.2 |
| netbsd | netbsd | 1.4.3 |
| netbsd | netbsd | 1.5 |
| netbsd | netbsd | 1.5.1 |
| netbsd | netbsd | 1.5.2 |
| netbsd | netbsd | 1.5.3 |
| netbsd | netbsd | 1.6 |
| netbsd | netbsd | 1.6:beta |
| netbsd | netbsd | 1.6.1 |
| netbsd | netbsd | 1.6.2 |
| netbsd | netbsd | 2.0 |
| netbsd | netbsd | 2.0.1 |
| netbsd | netbsd | 2.0.2 |
| netbsd | netbsd | 2.0.3 |
| netbsd | netbsd | 2.0.4 |
| netbsd | netbsd | 2.1 |
| netbsd | netbsd | 2.1.1 |
| netbsd | netbsd | 3.0 |
| netbsd | netbsd | 3.0.1 |
| netbsd | netbsd | 3.0.2 |
| netbsd | netbsd | 3.1 |
| netbsd | netbsd | 3.99.15 |
| netbsd | netbsd | 4.0:beta |
| netbsd | netbsd | 4.0:beta2 |
| netbsd | netbsd | 4.0.1 |
| netbsd | netbsd | 5.0 |
| netbsd | netbsd | 5.0.1 |
| apple | mac_os_x | * |
| freebsd | freebsd | * |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References