'Re: [oss-security] CVE request: kernel: btrfs'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request: kernel: btrfs
From:       Josh Bressers <bressers () redhat ! com>
Date:       2010-07-21 18:11:52
Message-ID: 2104881042.1128801279735912713.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]


----- "Dan Rosenberg" <dan.j.rosenberg@gmail.com> wrote:

> Fixes for two issues in btrfs were committed upstream:
> 
> 1.  The BTRFS_IOC_CLONE and BTRFS_IOC_CLONE_RANGE ioctls allowed a
> local user to overwrite append-only files.

Please use CVE-2010-2537.

> 
> 2.  The BTRFS_IOC_CLONE_RANGE ioctl was subject to an integer
> overflow
> in specifying offsets to copy from a file, which potentially allows a
> local user to read sensitive filesystem data.

Please use CVE-2010-2538

> 
> Reference:
> http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=2ebc3464781ad24474abcbd2274e6254689853b5
>  

Thanks.

-- 
    JB


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic