New Search

The do_gfs2_set_flags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request.

oval:org.mitre.oval:def:9916

The do_gfs2_set_flags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 5
  • Oracle Linux 5
Class:
vulnerability
Reference(s):
  • CVE-2010-1641
Product(s):