VRDA Feed : Provides information for vulnerability impact analysis

VRDA Feed by

Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis

[ about VRDA Feed | JPCERT/CC ]

Vulnerability Analysis Result (Revision No : 1)

[ Download XML ]

CVE-2010-1636

kernel: The btrfs_ioctl_clone function in fs/btrfs/ioctl.c ...

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1636

Original

The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32, and possibly other versions, does not ensure that a cloned file descriptor has been opened for reading, which allows local users to read sensitive information from a write-only file descriptor.

Translation (Show)

About This Analysis Information

Analysis Information Provider:

NIST NVD

First Published:

2010-06-08

Source Information Category:

Advisory, Alert

Last Updated:

2010-06-08

Affected Product Tags

cpe:/o:linux:kernel:2.6.29

cpe:/o:linux:kernel:2.6.29.1

cpe:/o:linux:kernel:2.6.29.2

cpe:/o:linux:kernel:2.6.29.3

cpe:/o:linux:kernel:2.6.29.4

cpe:/o:linux:kernel:2.6.29.5

cpe:/o:linux:kernel:2.6.29.6

cpe:/o:linux:kernel:2.6.30

cpe:/o:linux:kernel:2.6.30.1

cpe:/o:linux:kernel:2.6.30.10

cpe:/o:linux:kernel:2.6.30.2

cpe:/o:linux:kernel:2.6.30.3

cpe:/o:linux:kernel:2.6.30.4

cpe:/o:linux:kernel:2.6.30.5

cpe:/o:linux:kernel:2.6.30.6

cpe:/o:linux:kernel:2.6.30.7

cpe:/o:linux:kernel:2.6.30.8

cpe:/o:linux:kernel:2.6.30.9

cpe:/o:linux:kernel:2.6.31

cpe:/o:linux:kernel:2.6.31.1

cpe:/o:linux:kernel:2.6.31.10

cpe:/o:linux:kernel:2.6.31.11

cpe:/o:linux:kernel:2.6.31.12

cpe:/o:linux:kernel:2.6.31.13

cpe:/o:linux:kernel:2.6.31.2

cpe:/o:linux:kernel:2.6.31.3

cpe:/o:linux:kernel:2.6.31.4

cpe:/o:linux:kernel:2.6.31.5

cpe:/o:linux:kernel:2.6.31.6

cpe:/o:linux:kernel:2.6.31.7

cpe:/o:linux:kernel:2.6.31.8

cpe:/o:linux:kernel:2.6.31.9

cpe:/o:linux:kernel:2.6.32

Vulnerability Analysis Results

[Access Vector] ^[?]

Undefined^[?]

Local^[?]

Adjacent Network^[?]

Network^[?]

[Access Complexit] ^[?]

Undefined^[?]

High^[?]

Medium^[?]

Low^[?]

[Authentication] ^[?]

Undefined^[?]

Multiple^[?]

Single^[?]

None^[?]

[Confidentiality Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Integrity Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Availability Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

Alternatives

References

CONFIRM http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=5dc6416414fb3ec6e2825fd4d20c8bf1d7fe0395

CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=593226

MISC https://bugs.launchpad.net/ubuntu/+source/linux/+bug/579585

MLIST [oss-security] 20100518 kernel: btrfs: check for read permission on src file in the clone ioctl

MLIST [oss-security] 20100525 Re: kernel: btrfs: check for read permission on src file in the clone ioctl

MLIST [oss-security] 20100518 Re: kernel: btrfs: check for read permission on src file in the clone ioctl

Vulnerability Type Information Leak / Disclosure (CWE-200)