CVE-2016-6560

2017-03-3119:00:00

CWE-195

certcc

www.cve.org

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.5%

JSON

illumos osnet-incorporation bcopy() and bzero() implementations make signed instead of unsigned comparisons allowing a system crash.

CNA Affected

[
  {
    "product": "osnet-incorporation",
    "vendor": "illumos",
    "versions": [
      {
        "status": "affected",
        "version": "proir to [email protected],5.11-2016.0.1.15933"
      }
    ]
  }
]

References

github.com/illumos/illumos-gate/commit/5aaab1a49679c26dbcb6fb6dc25799950d70cc71

www.illumos.org/issues/7488

www.openindiana.org/2016/11/01/cve-2016-6560-cve-2016-6561-security-issues-in-illumos/