CVE-2010-2226

Linux Kernel < 2.6.35 - Unauthorized File Read Access via xfs_swapext Ioctl

Title source: llm

Description

The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file into another file.

References (18)

Core 18

Core References

Patch x_refsource_confirm

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1817176a86352f65210139d4c794ad2d19fc6b63

Third Party Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2010-0610.html

Broken Link mailing-list x_refsource_mlist

http://archives.free.net.ph/message/20100616.135735.40f53a32.en.html

Third Party Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1000-1

Third Party Advisory mailing-list x_refsource_mlist

http://marc.info/?l=oss-security&m=127687486331790&w=2

Third Party Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2010:198

Issue Tracking, Third Party Advisory x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=605158

Broken Link x_refsource_confirm

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0298

Third Party Advisory mailing-list x_refsource_mlist

http://marc.info/?l=oss-security&m=127677135609357&w=2

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43315

Broken Link mailing-list x_refsource_mlist

http://archives.free.net.ph/message/20100616.130710.301704aa.en.html

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2010/dsa-2094

Third Party Advisory x_refsource_confirm

http://www.vmware.com/security/advisories/VMSA-2011-0003.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/40920

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/516397/100/0/threaded

Scores

EPSS 0.0011

EPSS Percentile 29.0%

Details

CWE

CWE-200

Status published

Products (11)

canonical/ubuntu_linux 6.06

canonical/ubuntu_linux 8.04

canonical/ubuntu_linux 9.04

canonical/ubuntu_linux 9.10

canonical/ubuntu_linux 10.04

canonical/ubuntu_linux 10.10

debian/debian_linux 5.0

linux/linux_kernel < 2.6.35

suse/linux_enterprise_desktop 10 sp3

suse/linux_enterprise_server 10 sp3

... and 1 more

Published Sep 03, 2010

Tracked Since Feb 18, 2026