CVE-2010-4650

Priority
Medium
Description
Buffer overflow in the fuse_do_ioctl function in fs/fuse/file.c in the
Linux kernel before 2.6.37 allows local users to cause a denial of service
or possibly have unspecified other impact by leveraging the ability to
operate a CUSE server.
Ubuntu-Description
An error was discovered in the kernel's handling of CUSE (Character device
in Userspace). A local attacker might exploit this flaw to escalate
privilege, if access to /dev/cuse has been modified to allow non-root
users.
References
Bugs
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.37~rc6)
Patches:
Introduced by 59efec7b903987dcb60b9ebc85c7acd4443a11a1Fixed by 7572777eef78ebdee1ecb7c258c0ef94d35bad16
Package
Upstream:released (2.6.37~rc6)
Package
Upstream:released (2.6.37~rc6)
More Information

Updated: 2018-06-26 04:38:56 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)