[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: kernel: btrfs
From: Josh Bressers <bressers () redhat ! com>
Date: 2010-07-21 18:11:52
Message-ID: 2104881042.1128801279735912713.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]
----- "Dan Rosenberg" <dan.j.rosenberg@gmail.com> wrote:
> Fixes for two issues in btrfs were committed upstream:
>
> 1. The BTRFS_IOC_CLONE and BTRFS_IOC_CLONE_RANGE ioctls allowed a
> local user to overwrite append-only files.
Please use CVE-2010-2537.
>
> 2. The BTRFS_IOC_CLONE_RANGE ioctl was subject to an integer
> overflow
> in specifying offsets to copy from a file, which potentially allows a
> local user to read sensitive filesystem data.
Please use CVE-2010-2538
>
> Reference:
> http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=2ebc3464781ad24474abcbd2274e6254689853b5
>
Thanks.
--
JB
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic