Off-by-one error in afs_pioctl.c in OpenAFS before 1.6.16 might allow local users to cause a denial of service (memory overwrite and system crash) via a pioctl with an input buffer size of 4096 bytes.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Openafs | Openafs | * | 1.6.15 (including) |
Openafs | Ubuntu | esm-apps/xenial | * |
Openafs | Ubuntu | precise | * |
Openafs | Ubuntu | trusty | * |
Openafs | Ubuntu | upstream | * |
Openafs | Ubuntu | wily | * |
Openafs | Ubuntu | xenial | * |