CVE-2010-3078 (retired)

Priority
Description
The xfs_ioc_fsgetxattr function in fs/xfs/linux-2.6/xfs_ioctl.c in the
Linux kernel before 2.6.36-rc4 does not initialize a certain structure
member, which allows local users to obtain potentially sensitive
information from kernel stack memory via an ioctl call.
Ubuntu-Description
Dan Rosenberg discovered that certain XFS ioctls leaked kernel stack
contents. A local attacker could exploit this to read portions of kernel
memory, leading to a loss of privacy.
Assigned-to
bradf
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
Package
Upstream:released (2.6.36~rc4)
More Information

Updated: 2019-03-26 11:52:45 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)