Unrated severityNVD Advisory· Published Aug 20, 2010· Updated Apr 29, 2026

CVE-2010-3014

Description

The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap memory via a large out_size value in a ViceIoctl struct to a Coda ioctl, which triggers a buffer over-read.

Affected products

FreeBSD/FreeBSD
cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
NetBSD/NetBSD
cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cvsweb.netbsd.org/bsdweb.cgi/src/sys/coda/coda.h.diffnvdPatch
svn.freebsd.org/viewvc/basenvdPatch
www.securityfocus.com/archive/1/513151/100/0/threadednvd
www.vsecurity.com/resources/advisory/20100816-1/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000