Vulnerability Description
The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap memory via a large out_size value in a ViceIoctl struct to a Coda ioctl, which triggers a buffer over-read.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | All versions |
| Netbsd | Netbsd | All versions |
Related Weaknesses (CWE)
References
- http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/coda/coda.h.diff?r1=1.15&r2=1.16&onlPatch
- http://svn.freebsd.org/viewvc/base?view=revision&revision=210997Patch
- http://www.securityfocus.com/archive/1/513151/100/0/threaded
- http://www.vsecurity.com/resources/advisory/20100816-1/
- http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/coda/coda.h.diff?r1=1.15&r2=1.16&onlPatch
- http://svn.freebsd.org/viewvc/base?view=revision&revision=210997Patch
- http://www.securityfocus.com/archive/1/513151/100/0/threaded
- http://www.vsecurity.com/resources/advisory/20100816-1/
FAQ
What is CVE-2010-3014?
CVE-2010-3014 is a vulnerability with a CVSS score of 1.2 (LOW). The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap memory via a large out_size val...
How severe is CVE-2010-3014?
CVE-2010-3014 has been rated LOW with a CVSS base score of 1.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3014?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Netbsd Netbsd.