CVE-2010-2943

EUVD-2010-2947
The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assigned to an unlinked file, by accessing a stale NFS filehandle.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.1 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
< 2.6.35
canonicalubuntu_linux
6.06
canonicalubuntu_linux
9.10
canonicalubuntu_linux
10.04
canonicalubuntu_linux
10.10
vmwareesx
4.0
vmwareesx
4.1
avayaaura_communication_manager
5.2
avayaaura_presence_services
6.0
avayaaura_presence_services
6.1
avayaaura_presence_services
6.1.1
avayaaura_session_manager
1.1
avayaaura_session_manager
5.2
avayaaura_session_manager
6.0
avayaaura_system_manager
5.2
avayaaura_system_manager
6.0
avayaaura_system_manager
6.1
avayaaura_system_manager
6.1.1
avayaaura_system_platform
1.1
avayaaura_system_platform
6.0
avayaaura_system_platform
6.0:sp1
avayaaura_voice_portal
5.0
avayaaura_voice_portal
5.1
avayaaura_voice_portal
5.1:sp1
avayaiq
5.0
avayaiq
5.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
dapper
dne
hardy
Fixed 2.6.24-28.82
released
jaunty
ignored
karmic
Fixed 2.6.31-22.70
released
lucid
Fixed 2.6.32-27.49
released
maverick
Fixed 2.6.35-22.35
released
natty
not-affected
linux-ec2
dapper
dne
hardy
dne
jaunty
dne
karmic
Fixed 2.6.31-307.23
released
lucid
Fixed 2.6.32-311.22
released
maverick
ignored
natty
dne
linux-fsl-imx51
dapper
dne
hardy
dne
karmic
Fixed 2.6.31-112.30
released
lucid
Fixed 2.6.31-608.21
released
maverick
dne
natty
dne
linux-lts-backport-maverick
dapper
dne
hardy
dne
jaunty
dne
karmic
dne
lucid
Fixed 2.6.35-23.40~lucid1
released
maverick
dne
natty
dne
linux-mvl-dove
dapper
dne
hardy
dne
karmic
ignored
lucid
Fixed 2.6.32-213.29
released
maverick
Fixed 2.6.32-415.32
released
natty
dne
linux-source-2.6.15
dapper
Fixed 2.6.15-55.91
released
hardy
dne
jaunty
dne
karmic
dne
lucid
dne
maverick
dne
natty
dne
linux-ti-omap4
dapper
dne
hardy
dne
karmic
dne
lucid
dne
maverick
not-affected
natty
not-affected
Common Weakness Enumeration
References
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html
http://secunia.com/advisories/42758
http://secunia.com/advisories/43161
http://secunia.com/advisories/46397
http://support.avaya.com/css/P8/documents/100113326
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35
http://www.openwall.com/lists/oss-security/2010/08/18/2
http://www.openwall.com/lists/oss-security/2010/08/19/5
http://www.redhat.com/support/errata/RHSA-2010-0723.html
http://www.securityfocus.com/archive/1/520102/100/0/threaded
http://www.securityfocus.com/bid/42527
http://www.ubuntu.com/usn/USN-1041-1
http://www.ubuntu.com/usn/USN-1057-1
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
http://www.vupen.com/english/advisories/2011/0070
http://www.vupen.com/english/advisories/2011/0280
https://bugzilla.redhat.com/show_bug.cgi?id=624923
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html
http://secunia.com/advisories/42758
http://secunia.com/advisories/43161
http://secunia.com/advisories/46397
http://support.avaya.com/css/P8/documents/100113326
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35
http://www.openwall.com/lists/oss-security/2010/08/18/2
http://www.openwall.com/lists/oss-security/2010/08/19/5
http://www.redhat.com/support/errata/RHSA-2010-0723.html
http://www.securityfocus.com/archive/1/520102/100/0/threaded
http://www.securityfocus.com/bid/42527
http://www.ubuntu.com/usn/USN-1041-1
http://www.ubuntu.com/usn/USN-1057-1
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
http://www.vupen.com/english/advisories/2011/0070
http://www.vupen.com/english/advisories/2011/0280
https://bugzilla.redhat.com/show_bug.cgi?id=624923