blob: cefea60d3523284ebba0000253b8c5c14006c574 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
Candidate: CVE-2010-2943
Description:
xfs leak due to filehandle conversion issue
References:
http://www.openwall.com/lists/oss-security/2010/08/18/2
Notes:
also need regression fix (not commited yet):
http://oss.sgi.com/archives/xfs/2010-08/msg00179.html
Bugs:
upstream: release (2.6.35) [7dce11db,7124fe0a,1920779e,7b6259e7]
2.6.32-upstream-stable: released (2.6.32.30)
sid: released (2.6.37-1) [bugfix/all/xfs-always-use-iget-in-bulkstat.patch, bugfix/all/xfs-validate-untrusted-inode-numbers-during-lookup.patch, bugfix/all/xfs-rename-XFS_IGET_BULKSTAT-to-XFS_IGET_UNTRUSTED.patch, bugfix/all/xfs-remove-block-number-from-inode-lookup-code.patch, bugfix/all/xfs-fix-untrusted-inode-number-lookup.patch]
2.6.26-lenny-security: ignored "backport too complex/risky for little risk"
2.6.32-squeeze-security: released (2.6.32-31) [bugfix/all/xfs-always-use-iget-in-bulkstat.patch, bugfix/all/xfs-validate-untrusted-inode-numbers-during-lookup.patch, bugfix/all/xfs-rename-XFS_IGET_BULKSTAT-to-XFS_IGET_UNTRUSTED.patch, bugfix/all/xfs-remove-block-number-from-inode-lookup-code.patch, bugfix/all/xfs-fix-untrusted-inode-number-lookup.patch]
|