The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32, and possibly other versions, does not ensure that a cloned file descriptor has been opened for reading, which allows local users to read sensitive information from a write-only file descriptor.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2010-06-07T20:00:00Z
Updated: 2024-08-07T01:28:43.266Z
Reserved: 2010-04-29T00:00:00Z
Link: CVE-2010-1636
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-06-08T00:30:01.397
Modified: 2023-02-13T04:18:58.807
Link: CVE-2010-1636
Redhat
No data.