CVE-2010-1641

Publication date 1 June 2010

Last updated 24 July 2024

Ubuntu priority

The do_gfs2_set_flags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file, which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	10.04 LTS lucid	Fixed 2.6.32-24.39
	9.10 karmic	Fixed 2.6.31-22.61
	9.04 jaunty	Fixed 2.6.28-19.62
	8.04 LTS hardy	Fixed 2.6.24-28.73
	6.06 LTS dapper	Not in release
linux-source-2.6.15	10.04 LTS lucid	Not in release
	9.10 karmic	Not in release
	9.04 jaunty	Not in release
	8.04 LTS hardy	Not in release
	6.06 LTS dapper	Not affected

Notes

smb

Dapper does not have gfs2

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
linux	Upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7df0e0397b9a18358573274db9fdab991941062f Hardy: http://chinstrap.myasnchisdf.eu.org/~smb/CVEs/CVE-2010-1641/patches/hardy/linux/0001-GFS2-Fix-permissions-checking-for-setflags-ioctl.txt Jaunty: http://chinstrap.myasnchisdf.eu.org/~smb/CVEs/CVE-2010-1641/patches/jaunty/linux/0001-GFS2-Fix-permissions-checking-for-setflags-ioctl.txt Karmic: http://chinstrap.myasnchisdf.eu.org/~smb/CVEs/CVE-2010-1641/patches/karmic/linux/0001-GFS2-Fix-permissions-checking-for-setflags-ioctl.txt Lucid: http://chinstrap.myasnchisdf.eu.org/~smb/CVEs/CVE-2010-1641/patches/lucid/linux/0001-GFS2-Fix-permissions-checking-for-setflags-ioctl.txt

Package

Patch details

linux

References

Related Ubuntu Security Notices (USN)

USN-966-1
Linux kernel vulnerabilities
4 August 2010

Other references

https://www.cve.org/CVERecord?id=CVE-2010-1641