CVE-2010-2943

The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assigned to an unlinked file, by accessing a stale NFS filehandle.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.1 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
VendorProductVersion
linuxlinux_kernel
𝑥
< 2.6.35
canonicalubuntu_linux
6.06
canonicalubuntu_linux
9.10
canonicalubuntu_linux
10.04
canonicalubuntu_linux
10.10
vmwareesx
4.0
vmwareesx
4.1
avayaaura_communication_manager
5.2
avayaaura_presence_services
6.0
avayaaura_presence_services
6.1
avayaaura_presence_services
6.1.1
avayaaura_session_manager
1.1
avayaaura_session_manager
5.2
avayaaura_session_manager
6.0
avayaaura_system_manager
5.2
avayaaura_system_manager
6.0
avayaaura_system_manager
6.1
avayaaura_system_manager
6.1.1
avayaaura_system_platform
1.1
avayaaura_system_platform
6.0
avayaaura_system_platform
6.0:sp1
avayaaura_voice_portal
5.0
avayaaura_voice_portal
5.1
avayaaura_voice_portal
5.1:sp1
avayaiq
5.0
avayaiq
5.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
natty
not-affected
maverick
Fixed 2.6.35-22.35
released
lucid
Fixed 2.6.32-27.49
released
karmic
Fixed 2.6.31-22.70
released
jaunty
ignored
hardy
Fixed 2.6.24-28.82
released
dapper
dne
linux-ec2
natty
dne
maverick
ignored
lucid
Fixed 2.6.32-311.22
released
karmic
Fixed 2.6.31-307.23
released
jaunty
dne
hardy
dne
dapper
dne
linux-fsl-imx51
natty
dne
maverick
dne
lucid
Fixed 2.6.31-608.21
released
karmic
Fixed 2.6.31-112.30
released
hardy
dne
dapper
dne
linux-lts-backport-maverick
natty
dne
maverick
dne
lucid
Fixed 2.6.35-23.40~lucid1
released
karmic
dne
jaunty
dne
hardy
dne
dapper
dne
linux-mvl-dove
natty
dne
maverick
Fixed 2.6.32-415.32
released
lucid
Fixed 2.6.32-213.29
released
karmic
ignored
hardy
dne
dapper
dne
linux-source-2.6.15
natty
dne
maverick
dne
lucid
dne
karmic
dne
jaunty
dne
hardy
dne
dapper
Fixed 2.6.15-55.91
released
linux-ti-omap4
natty
not-affected
maverick
not-affected
lucid
dne
karmic
dne
hardy
dne
dapper
dne
Common Weakness Enumeration
References
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html
http://secunia.com/advisories/42758
http://secunia.com/advisories/43161
http://secunia.com/advisories/46397
http://support.avaya.com/css/P8/documents/100113326
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35
http://www.openwall.com/lists/oss-security/2010/08/18/2
http://www.openwall.com/lists/oss-security/2010/08/19/5
http://www.redhat.com/support/errata/RHSA-2010-0723.html
http://www.securityfocus.com/archive/1/520102/100/0/threaded
http://www.securityfocus.com/bid/42527
http://www.ubuntu.com/usn/USN-1041-1
http://www.ubuntu.com/usn/USN-1057-1
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
http://www.vupen.com/english/advisories/2011/0070
http://www.vupen.com/english/advisories/2011/0280
https://bugzilla.redhat.com/show_bug.cgi?id=624923
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html
http://secunia.com/advisories/42758
http://secunia.com/advisories/43161
http://secunia.com/advisories/46397
http://support.avaya.com/css/P8/documents/100113326
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35
http://www.openwall.com/lists/oss-security/2010/08/18/2
http://www.openwall.com/lists/oss-security/2010/08/19/5
http://www.redhat.com/support/errata/RHSA-2010-0723.html
http://www.securityfocus.com/archive/1/520102/100/0/threaded
http://www.securityfocus.com/bid/42527
http://www.ubuntu.com/usn/USN-1041-1
http://www.ubuntu.com/usn/USN-1057-1
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
http://www.vupen.com/english/advisories/2011/0070
http://www.vupen.com/english/advisories/2011/0280
https://bugzilla.redhat.com/show_bug.cgi?id=624923