oss-sec mailing list archives
CVE request: kernel: btrfs
From: Dan Rosenberg <dan.j.rosenberg () gmail com>
Date: Wed, 21 Jul 2010 09:36:57 -0400
Fixes for two issues in btrfs were committed upstream: 1. The BTRFS_IOC_CLONE and BTRFS_IOC_CLONE_RANGE ioctls allowed a local user to overwrite append-only files. 2. The BTRFS_IOC_CLONE_RANGE ioctl was subject to an integer overflow in specifying offsets to copy from a file, which potentially allows a local user to read sensitive filesystem data. Reference: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=2ebc3464781ad24474abcbd2274e6254689853b5 -Dan
Current thread:
- CVE request: kernel: btrfs Dan Rosenberg (Jul 21)
- Re: CVE request: kernel: btrfs Josh Bressers (Jul 21)