VYPR
Unrated severityNVD Advisory· Published Nov 21, 2006· Updated Jun 16, 2026

CVE-2006-6013

CVE-2006-6013

Description

Integer signedness error in the fw_ioctl (FW_IOCTL) function in the FireWire (IEEE-1394) drivers (dev/firewire/fwdev.c) in various BSD kernels, including DragonFlyBSD, FreeBSD 5.5, MidnightBSD 0.1-CURRENT before 20061115, NetBSD-current before 20061116, NetBSD-4 before 20061203, and TrustedBSD, allows local users to read arbitrary memory contents via certain negative values of crom_buf->len in an FW_GCROM command. NOTE: this issue has been labeled as an integer overflow, but it is more like an integer signedness error.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • cpe:2.3:o:dragonflybsd:dragonflybsd:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:dragonflybsd:dragonflybsd:*:*:*:*:*:*:*:*
    • (no CPE)
  • FreeBSD/FreeBSD2 versions
    cpe:2.3:o:freebsd:freebsd:5.5:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:freebsd:freebsd:5.5:*:*:*:*:*:*:*
    • (no CPE)range: =5.5
  • cpe:2.3:o:midnightbsd:midnightbsd:0.1-current:*:*:*:*:*:*:*
  • NetBSD/NetBSD2 versions
    cpe:2.3:o:netbsd:netbsd:2.0.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:netbsd:netbsd:2.0.4:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:o:trustedbsd:trustedbsd:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

19

News mentions

0

No linked articles in our index yet.