Security Advisory

CVE-2010-1146

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-04-12 18:00:00

Last updated 2024-08-07 01:14:05

Assigner redhat

State PUBLISHED

Description

The Linux kernel 2.6.33.2 and earlier, when a ReiserFS filesystem exists, does not restrict read or write access to the .reiserfs_priv directory, which allows local users to gain privileges by modifying (1) extended attributes or (2) ACLs, as demonstrated by deleting a file under .reiserfs_priv/xattrs/.

← Browse all CVEs View on cve.org ↗