Integer overflow

2017-03-0716:59:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Integer overflow in the amap_alloc1 function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value.

CPENameOperatorVersion
openbsdeq5.9
openbsdeq5.8

CPE	Name	Operator	Version
	openbsd	eq	5.9
	openbsd	eq	5.8

References

www.openbsd.org/errata58.html

www.openbsd.org/errata59.html

www.openwall.com/lists/oss-security/2016/07/14/5

www.openwall.com/lists/oss-security/2016/07/17/7

www.securityfocus.com/bid/91805

www.securitytracker.com/id/1036318