FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

openafs -- local DoS vulnerability

Affected packages
openafs < 1.6.16

Details

VuXML ID 2e8fe57e-2b46-11e6-ae88-002590263bf5
Discovery 2016-03-16
Entry 2016-06-05

The OpenAFS development team reports:

Avoid a potential denial of service issue, by fixing a bug in pioctl logic that allowed a local user to overrun a kernel buffer with a single NUL byte.

References

CVE Name CVE-2015-8312
URL https://www.openafs.org/dl/1.6.16/RELNOTES-1.6.16