263424 – (CVE-2009-0787) Linux <2.6.29 eCryptfs: Allocate a variable number of pages for file headers (CVE-2009-0787)

Bug 263424 (CVE-2009-0787) - Linux <2.6.29 eCryptfs: Allocate a variable number of pages for file headers (CVE-2009-0787)

Summary: Linux <2.6.29 eCryptfs: Allocate a variable number of pages for file headers ...

Status:	RESOLVED FIXED

Alias:	CVE-2009-0787

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://git.kernel.org/?p=linux/kernel...
Whiteboard:	[linux >=2.6.28 <2.6.28.9]
Keywords:

Depends on:
Blocks:

Reported:	2009-03-22 22:26 UTC by Robert Buchholz (RETIRED)
Modified:	2013-09-05 03:04 UTC (History)
CC List:	3 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Buchholz (RETIRED) gentoo-dev

2009-03-22 22:26:47 UTC

ecryptfs throughout 2.6.28 wrote sensitive kernel memory to files that could potentially be read by users.

Comment 1 Stefan Behte (RETIRED) gentoo-dev

2009-03-31 20:36:13 UTC

CVE-2009-0787 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0787):
  The ecryptfs_write_metadata_to_contents function in the eCryptfs
  functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an
  incorrect size when writing kernel memory to an eCryptfs file header,
  which triggers an out-of-bounds read and allows local users to obtain
  portions of kernel memory.