Computer Security
[EN] securityvulns.ru no-pyccku


Linux GFS / GFS2 file system DoS
Published:25.03.2010
Source:
SecurityVulns ID:10715
Type:local
Threat Level:
4/10
Description:gfs2_lock/gfs_lock doesn't check file permissions.
CVE:CVE-2010-0727 (The gfs2_lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfs_lock function in the Linux kernel on Red Hat Enterprise Linux (RHEL) 5 and 6, does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service (BUG and system crash) by locking a file on a (1) GFS or (2) GFS2 filesystem, and then changing this file's permissions.)
Original documentdocumentMANDRIVA, [ MDVSA-2010:066 ] kernel (25.03.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod