CVE-2010-2798 (retired)

Priority
Description
The gfs2_dirent_find_space function in fs/gfs2/dir.c in the Linux kernel
before 2.6.35 uses an incorrect size value in calculations associated with
sentinel directory entries, which allows local users to cause a denial of
service (NULL pointer dereference and panic) and possibly have unspecified
other impact by renaming a file in a GFS2 filesystem, related to the
gfs2_rename function in fs/gfs2/ops_inode.c.
Ubuntu-Description
Bob Peterson discovered that GFS2 rename operations did not correctly
validate certain sizes. A local attacker could exploit this to crash the
system, leading to a denial of service.
Assigned-to
bradf
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:52:30 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)