CVE-2016-6240

Severity CVSS v4.0:
Pending analysis
Type:
CWE-189 Numeric Errors
Publication date:
07/03/2017
Last modified:
20/04/2025

Description

Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:openbsd:openbsd:5.8:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:5.9:*:*:*:*:*:*:*