EUVD-2010-2242

Malware in sbrugna...

Information Disclosure

kernel is vulnerable to information disclosure. A flaw was found in the handling of the SWAPEXT IOCTL in the Linux kernel XFS file system implementation. A local user could use this flaw to read write-only files, that they do not own, on an XFS file system. This could lead to unintended informati...

SuSE9 Security Update : the Linux kernel (YOU Patch Number 12646)

This updates the SUSE Linux Enterprise Server 9 kernel to fix various security issues and some bugs. The following security bugs were fixed : - Incorrect buffer handling in the biarch-compat buffer handling could be used by local attackers to gain root privileges. This problem affects foremost...

Arbitrary file deletion

The xfsswapext function in fs/xfs/xfsdfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file into another file...

CVE-2010-2226

The xfsswapext function in fs/xfs/xfsdfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file into another file...