Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2010-2943

The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assigned to an unlinked file, by accessing a stale NFS filehandle.

Published

2010-09-30T15:00:01.987

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

4.9

Weaknesses

Type: Primary
CWE-200

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 2.6.35	Yes
Operating System	canonical	ubuntu_linux	6.06	Yes
Operating System	canonical	ubuntu_linux	9.10	Yes
Operating System	canonical	ubuntu_linux	10.04	Yes
Operating System	canonical	ubuntu_linux	10.10	Yes
Operating System	vmware	esx	4.0	Yes
Operating System	vmware	esx	4.1	Yes
Application	avaya	aura_communication_manager	5.2	Yes
Application	avaya	aura_presence_services	6.0	Yes
Application	avaya	aura_presence_services	6.1	Yes
Application	avaya	aura_presence_services	6.1.1	Yes
Application	avaya	aura_session_manager	1.1	Yes
Application	avaya	aura_session_manager	5.2	Yes
Application	avaya	aura_session_manager	6.0	Yes
Application	avaya	aura_system_manager	5.2	Yes
Application	avaya	aura_system_manager	6.0	Yes
Application	avaya	aura_system_manager	6.1	Yes
Application	avaya	aura_system_manager	6.1.1	Yes
Application	avaya	aura_system_platform	1.1	Yes
Application	avaya	aura_system_platform	6.0	Yes
Application	avaya	aura_system_platform	6.0	Yes
Application	avaya	aura_voice_portal	5.0	Yes
Application	avaya	aura_voice_portal	5.1	Yes
Application	avaya	aura_voice_portal	5.1	Yes
Application	avaya	iq	5.0	Yes
Application	avaya	iq	5.1	Yes

References

http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767 Broken Link ([email protected])
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768 Broken Link ([email protected])
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769 Broken Link ([email protected])
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771 Broken Link ([email protected])
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188 ([email protected])
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d ([email protected])
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa ([email protected])
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html Broken Link ([email protected])
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html Broken Link ([email protected])
http://secunia.com/advisories/42758 Broken Link ([email protected])
http://secunia.com/advisories/43161 Broken Link ([email protected])
http://secunia.com/advisories/46397 Broken Link ([email protected])
http://support.avaya.com/css/P8/documents/100113326 Third Party Advisory ([email protected])
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35 Broken Link ([email protected])
http://www.openwall.com/lists/oss-security/2010/08/18/2 Mailing List, Patch, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2010/08/19/5 Mailing List, Patch, Third Party Advisory ([email protected])
http://www.redhat.com/support/errata/RHSA-2010-0723.html Broken Link ([email protected])
http://www.securityfocus.com/archive/1/520102/100/0/threaded Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/42527 Exploit, Third Party Advisory, VDB Entry ([email protected])
http://www.ubuntu.com/usn/USN-1041-1 Third Party Advisory ([email protected])
http://www.ubuntu.com/usn/USN-1057-1 Third Party Advisory ([email protected])
http://www.vmware.com/security/advisories/VMSA-2011-0012.html Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2011/0070 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2011/0280 Broken Link ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=624923 Issue Tracking, Patch, Third Party Advisory ([email protected])
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188 (af854a3a-2127-422b-91ae-364da2661108)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d (af854a3a-2127-422b-91ae-364da2661108)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa (af854a3a-2127-422b-91ae-364da2661108)
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/42758 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/43161 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/46397 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://support.avaya.com/css/P8/documents/100113326 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2010/08/18/2 Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2010/08/19/5 Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2010-0723.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/520102/100/0/threaded Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/42527 Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-1041-1 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-1057-1 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vmware.com/security/advisories/VMSA-2011-0012.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0070 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0280 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=624923 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)