| Summary: | Kernel: eCryptfs: Prevent lower dentry from going negative during unlink (CVE-2009-2908) | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Bjoern Tropf (RETIRED) <asym> |
| Component: | Kernel | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | normal | CC: | hardened-kernel+disabled, kernel |
| Priority: | High | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.31.y.git;a=commit;h=9c2d2056647790c5034d722bd24e9d913ebca73c | ||
| Whiteboard: | [linux <2.6.27.37] [linux >=2.6.28 <2.6.31.2] [gp <2.6.31-3] | ||
| Package list: | Runtime testing required: | --- | |
|
Description
Bjoern Tropf (RETIRED)
2009-10-07 07:01:31 UTC
CVE-2009-2908 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2908): The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount. CVE-2009-2908 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2908): The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount. |
