CVE-2016-9031

Name of the Vulnerable Software and Affected Versions Joyent SmartOS version 20161110T013148Z

Description An integer overflow exists in the Hyprlofs file system, specifically in the Ioctl system call with the command HYPRLOFS ADD ENTRIES when handling 32-bit file systems. This can cause a kernel panic and potentially lead to a full privilege escalation.

Recommendations For Joyent SmartOS version 20161110T013148Z, as a temporary workaround, consider restricting the use of the HYPRLOFS ADD ENTRIES command in the Ioctl system call to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.