GCVE - cpe:2.3:o:joyent:smartos:20161110t013148z:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:joyent:smartos:20161110t013148z:*:*:*:*:*:*:*

part: o version: 20161110t013148z update: *

Vendor	Joyent (`4431761b-e664-5a09-8d23-d61922dc65bc`)
Product	Smartos (`43d1d112-c6b8-52f1-b69c-e9e7462d6250`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-9040`	vulnerable	2026-06-08 05:08:22.452228	Details available MEDIUM (6.2) An exploitable denial of service exists in the the Joyent SmartOS OS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFSADDENTRIES when used with a 32 bit model. An attacker can cause a buffer to be allocated and never freed. When repeatedly exploit this will result in memory exhaustion, resulting in a full system denial of service. Published: 2018-09-07T12:00:00.000Z Updated: 2024-09-16T22:19:52.247Z Open on db.gcve.eu Reference links https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0258	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9039`	vulnerable	2026-06-08 05:08:22.451794	Details available MEDIUM (6.2) An exploitable denial of service exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES. An attacker can cause a buffer to be allocated and never freed. When repeatedly exploited this will result in memory exhaustion, resulting in a full system denial of service. Published: 2017-01-31T21:00:00.000Z Updated: 2024-08-06T02:42:09.806Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/95916 http://www.talosintelligence.com/reports/TALOS-2016-0257/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9035`	vulnerable	2026-06-08 05:08:22.444823	Details available HIGH (7) An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when dealing with native file systems. An attacker can craft an input that can cause a buffer overflow in the path variable leading to an out of bounds memory access and could result in potential privilege escalation. This vulnerability is distinct from CVE-2016-9033. Published: 2016-12-14T17:00:00.000Z Updated: 2024-08-06T02:42:09.422Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/94926 http://www.talosintelligence.com/reports/TALOS-2016-0253/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9033`	vulnerable	2026-06-08 05:08:22.442545	Details available HIGH (7) An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when dealing with native file systems. An attacker can craft an input that can cause a buffer overflow in the path variable leading to an out of bounds memory access and could result in potential privilege escalation. This vulnerability is distinct from CVE-2016-9035. Published: 2016-12-14T17:00:00.000Z Updated: 2024-08-06T02:42:09.431Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/94928 http://www.talosintelligence.com/reports/TALOS-2016-0251/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9032`	vulnerable	2026-06-08 05:08:22.442082	Details available HIGH (7) An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when dealing with native file systems. An attacker can craft an input that can cause a buffer overflow in the nm variable leading to an out of bounds memory access and could result in potential privilege escalation. This vulnerability is distinct from CVE-2016-9034. Published: 2016-12-14T17:00:00.000Z Updated: 2024-08-06T02:42:09.441Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/94923 http://www.talosintelligence.com/reports/TALOS-2016-0250/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9031`	vulnerable	2026-06-08 05:08:22.441511	Details available HIGH (7.8) An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when dealing with 32-bit file systems. An attacker can craft an input that can cause a kernel panic and potentially be leveraged into a full privilege escalation vulnerability. This vulnerability is distinct from CVE-2016-8733. Published: 2016-12-14T17:00:00.000Z Updated: 2024-08-06T02:35:02.561Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/94921 http://www.talosintelligence.com/reports/TALOS-2016-0249/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Joyent SmartOS 20161110T013148Z

PURL mappings

Vulnerability references

Contribute