CVE-2010-2525

Published: 16 May 2012

A flaw was discovered in gfs2 file system’s handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.

From the Ubuntu security team

Dan Rosenberg discovered a flaw in gfs2 file system's handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
Patches:
Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by 2646a1f61a3b5525914757f10fa12b5b94713648
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-linaro-omap
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-linaro-shared
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-lts-backport-natty
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-qcm-msm
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc1)