CVE-2016-9034

Name of the Vulnerable Software and Affected Versions Joyent SmartOS version 20161110T013148Z

Description A buffer overflow issue exists in the Hyprlofs file system, specifically in the Ioctl system call with the HYPRLOFS ADD ENTRIES command when handling 32-bit file systems. An attacker can craft input to cause a buffer overflow in the nm variable, leading to out-of-bounds memory access and potential privilege escalation.

Recommendations For Joyent SmartOS version 20161110T013148Z, as a temporary workaround, consider restricting access to the Ioctl system call with the HYPRLOFS ADD ENTRIES command to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.