CVE-2010-2943
Last modified
CVE-2010-2943 is a high-severity vulnerability rated 8.1/10 on the CVSS scale. The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assigned to an unlinked file, by accessing a stale NFS filehandle.. EPSS estimates a 17.01% chance of exploitation in the next 30 days.
Description
The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assigned to an unlinked file, by accessing a stale NFS filehandle.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 2.6.35 |
| Canonical | Ubuntu Linux | 6.06 |
| Canonical | Ubuntu Linux | 9.10 |
| Canonical | Ubuntu Linux | 10.04 |
| Canonical | Ubuntu Linux | 10.10 |
| Vmware | Esx | 4.0 |
| Vmware | Esx | 4.1 |
| Avaya | Aura Communication Manager | 5.2 |
| Avaya | Aura Presence Services | 6.0 |
| Avaya | Aura Presence Services | 6.1 |
| Avaya | Aura Presence Services | 6.1.1 |
| Avaya | Aura Session Manager | 1.1 |
| Avaya | Aura Session Manager | 5.2 |
| Avaya | Aura Session Manager | 6.0 |
| Avaya | Aura System Manager | 5.2 |
| Avaya | Aura System Manager | 6.0 |
| Avaya | Aura System Manager | 6.1 |
| Avaya | Aura System Manager | 6.1.1 |
| Avaya | Aura System Platform | 1.1 |
| Avaya | Aura System Platform | 6.0 |
| Avaya | Aura Voice Portal | 5.0 |
| Avaya | Aura Voice Portal | 5.1 |
| Avaya | Iq | 5.0 |
| Avaya | Iq | 5.1 |
References
- http://secunia.com/advisories/42758Broken Link
- http://secunia.com/advisories/43161Broken Link
- http://secunia.com/advisories/46397Broken Link
- http://support.avaya.com/css/P8/documents/100113326Third Party Advisory
- http://www.openwall.com/lists/oss-security/2010/08/18/2Mailing List, Patch, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2010/08/19/5Mailing List, Patch, Third Party Advisory
- http://www.securityfocus.com/archive/1/520102/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/42527Exploit, Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-1041-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-1057-1Third Party Advisory
- http://www.vmware.com/security/advisories/VMSA-2011-0012.htmlThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=624923Issue Tracking, Patch, Third Party Advisory
- http://secunia.com/advisories/42758Broken Link
- http://secunia.com/advisories/43161Broken Link
- http://secunia.com/advisories/46397Broken Link
- http://support.avaya.com/css/P8/documents/100113326Third Party Advisory
- http://www.openwall.com/lists/oss-security/2010/08/18/2Mailing List, Patch, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2010/08/19/5Mailing List, Patch, Third Party Advisory
- http://www.securityfocus.com/archive/1/520102/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/42527Exploit, Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-1041-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-1057-1Third Party Advisory
- http://www.vmware.com/security/advisories/VMSA-2011-0012.htmlThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=624923Issue Tracking, Patch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-2943?
How severe is CVE-2010-2943?
How do I fix CVE-2010-2943?
Are you affected by CVE-2010-2943?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST