CVE-2016-8733

Name of the Vulnerable Software and Affected Versions Joyent SmartOS version 20161110T013148Z

Description An integer overflow issue exists in the Hyprlofs file system, specifically in the Ioctl system call with the command HYPRLOFS ADD ENTRIES when handling native file systems. This can be exploited by crafting an input that causes a kernel panic, potentially leading to a full privilege escalation.

Recommendations For Joyent SmartOS version 20161110T013148Z, as a temporary workaround, consider restricting the use of the HYPRLOFS ADD ENTRIES command in the Ioctl system call until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.