Integer Signedness Errors in NetBSD and FreeBSD's Kernel Affecting Multiple Versions
CVE-2010-2530

Currently unrated

Key Information:

Vendor: Netbsd
Status: Netbsd
Vendor: CVE Published:; 29 September 2010

What is CVE-2010-2530?

This vulnerability is caused by multiple integer signedness errors in the smb_subr.c file within the netsmb module of the kernel used in NetBSD 5.0.2 and earlier versions, FreeBSD, and Apple Mac OS X. Local users can exploit this weakness by passing a negative size value during a /dev/nsmb ioctl operation, which can lead to a denial of service by causing the system to panic. Specific ioctl calls, such as SMBIOC_LOOKUP and SMBIOC_OPENSESSION, are affected. Proper input validation and error handling measures are essential to mitigate this issue.

References

http://www.openwall.com/lists/oss-security/2010/07/12/6

mailing-listx_refsource_MLIST

http://www.securityfocus.com/bid/41557

vdb-entryx_refsource_BID

http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/netsmb/smb_su...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 29, 2010

CVE-2010-2530 Data

JSON

Netbsd

What is CVE-2010-2530?

References

Timeline