CVE-2010-1146

Priority
Medium
Description
The Linux kernel 2.6.33.2 and earlier, when a ReiserFS filesystem exists,
does not restrict read or write access to the .reiserfs_priv directory,
which allows local users to gain privileges by modifying (1) extended
attributes or (2) ACLs, as demonstrated by deleting a file under
.reiserfs_priv/xattrs/.
References
Package
Upstream:needs-triage
Package
Source: linux (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2017-12-15 20:28:42 UTC (commit 13913)