CVE-2010-2525
Published: 16 May 2012
A flaw was discovered in gfs2 file system’s handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.
From the Ubuntu Security Team
Dan Rosenberg discovered a flaw in gfs2 file system's handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.
Notes
Author | Note |
---|---|
jdstrand | linux-armadaxp is maintained by OEM |
Priority
CVSS 3 base score: 7.8
Status
Package | Release | Status |
---|---|---|
linux Launchpad, Ubuntu, Debian |
hardy |
Released
(2.6.24-28.80)
|
jaunty |
Released
(2.6.28-19.66)
|
|
karmic |
Released
(2.6.31-22.67)
|
|
lucid |
Released
(2.6.32-25.43)
|
|
maverick |
Released
(2.6.35-22.35)
|
|
natty |
Not vulnerable
(2.6.37-2.9)
|
|
oneiric |
Not vulnerable
(2.6.39-0.0)
|
|
precise |
Not vulnerable
(3.1.0-1.1)
|
|
upstream |
Released
(2.6.33~rc1)
|
|
Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 |
||
linux-armadaxp Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Not vulnerable
(3.2.0-1600.1)
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-ec2 Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
karmic |
Released
(2.6.31-307.21)
|
|
lucid |
Released
(2.6.32-309.17)
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-fsl-imx51 Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Ignored
(reached end-of-life, does not affect buildd)
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-linaro-omap Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
natty |
Ignored
(abandoned)
|
|
oneiric |
Ignored
(abandoned)
|
|
precise |
Ignored
(abandoned)
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-linaro-shared Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
natty |
Does not exist
|
|
oneiric |
Ignored
(abandoned)
|
|
precise |
Ignored
(abandoned)
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-linaro-vexpress Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
natty |
Ignored
(abandoned)
|
|
oneiric |
Ignored
(abandoned)
|
|
precise |
Ignored
(abandoned)
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-lts-backport-maverick Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Ignored
(reached end-of-life)
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-lts-backport-natty Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Not vulnerable
(2.6.38-1.27~lucid1)
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-lts-backport-oneiric Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Not vulnerable
(3.0.0-5.6~lucid1)
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-mvl-dove Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Ignored
(reached end-of-life)
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-qcm-msm Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Ignored
(abandoned)
|
|
natty |
Ignored
(abandoned)
|
|
oneiric |
Ignored
(abandoned)
|
|
precise |
Ignored
(abandoned)
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-source-2.6.15 Launchpad, Ubuntu, Debian |
dapper |
Released
(2.6.15-55.89)
|
hardy |
Does not exist
|
|
intrepid |
Does not exist
|
|
jaunty |
Does not exist
|
|
karmic |
Does not exist
|
|
lucid |
Does not exist
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
upstream |
Released
(2.6.33~rc1)
|
|
linux-ti-omap4 Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
natty |
Not vulnerable
(2.6.38-1201.2)
|
|
oneiric |
Not vulnerable
(2.6.38-1309.13)
|
|
precise |
Not vulnerable
(3.0.0-1401.2)
|
|
upstream |
Released
(2.6.33~rc1)
|