summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2010-2943
blob: cefea60d3523284ebba0000253b8c5c14006c574 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Candidate: CVE-2010-2943
Description:
 xfs leak due to filehandle conversion issue
References:
 http://www.openwall.com/lists/oss-security/2010/08/18/2
Notes:
 also need regression fix (not commited yet):
 http://oss.sgi.com/archives/xfs/2010-08/msg00179.html
Bugs:
upstream: release (2.6.35) [7dce11db,7124fe0a,1920779e,7b6259e7]
2.6.32-upstream-stable: released (2.6.32.30)
sid: released (2.6.37-1) [bugfix/all/xfs-always-use-iget-in-bulkstat.patch, bugfix/all/xfs-validate-untrusted-inode-numbers-during-lookup.patch, bugfix/all/xfs-rename-XFS_IGET_BULKSTAT-to-XFS_IGET_UNTRUSTED.patch, bugfix/all/xfs-remove-block-number-from-inode-lookup-code.patch, bugfix/all/xfs-fix-untrusted-inode-number-lookup.patch]
2.6.26-lenny-security: ignored "backport too complex/risky for little risk"
2.6.32-squeeze-security: released (2.6.32-31) [bugfix/all/xfs-always-use-iget-in-bulkstat.patch, bugfix/all/xfs-validate-untrusted-inode-numbers-during-lookup.patch, bugfix/all/xfs-rename-XFS_IGET_BULKSTAT-to-XFS_IGET_UNTRUSTED.patch, bugfix/all/xfs-remove-block-number-from-inode-lookup-code.patch, bugfix/all/xfs-fix-untrusted-inode-number-lookup.patch]

© 2014-2024 Faster IT GmbH | imprint | privacy policy