The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assigned to an unlinked file, by accessing a stale NFS filehandle.
References
Link Providers
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767 cve-icon cve-icon
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768 cve-icon cve-icon
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769 cve-icon cve-icon
http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771 cve-icon cve-icon
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188 cve-icon cve-icon
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d cve-icon cve-icon
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa cve-icon cve-icon
http://oss.sgi.com/archives/xfs/2010-06/msg00191.html cve-icon cve-icon
http://oss.sgi.com/archives/xfs/2010-06/msg00198.html cve-icon cve-icon
http://secunia.com/advisories/42758 cve-icon cve-icon
http://secunia.com/advisories/43161 cve-icon cve-icon
http://secunia.com/advisories/46397 cve-icon cve-icon
http://support.avaya.com/css/P8/documents/100113326 cve-icon cve-icon
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2010/08/18/2 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2010/08/19/5 cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2010-0723.html cve-icon cve-icon
http://www.securityfocus.com/archive/1/520102/100/0/threaded cve-icon cve-icon
http://www.securityfocus.com/bid/42527 cve-icon cve-icon
http://www.ubuntu.com/usn/USN-1041-1 cve-icon cve-icon
http://www.ubuntu.com/usn/USN-1057-1 cve-icon cve-icon
http://www.vmware.com/security/advisories/VMSA-2011-0012.html cve-icon cve-icon
http://www.vupen.com/english/advisories/2011/0070 cve-icon cve-icon
http://www.vupen.com/english/advisories/2011/0280 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=624923 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2010-2943 cve-icon
https://www.cve.org/CVERecord?id=CVE-2010-2943 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2010-09-30T14:00:00

Updated: 2024-08-07T02:55:45.376Z

Reserved: 2010-08-04T00:00:00

Link: CVE-2010-2943

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-09-30T15:00:01.987

Modified: 2023-02-13T04:21:20.347

Link: CVE-2010-2943

cve-icon Redhat

Severity : Moderate

Publid Date: 2010-06-20T00:00:00Z

Links: CVE-2010-2943 - Bugzilla