CVE-2016-6246

2017-03-0716:00:00

mitre

www.cve.org

4.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

OpenBSD 5.8 and 5.9 allows certain local users with kern.usermount privileges to cause a denial of service (kernel panic) by mounting a tmpfs with a VNOVAL in the (1) username, (2) groupname, or (3) device name of the root node.

References

www.openbsd.org/errata58.html

www.openbsd.org/errata59.html

www.openwall.com/lists/oss-security/2016/07/14/5

www.openwall.com/lists/oss-security/2016/07/17/7

www.securityfocus.com/bid/91805