Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-1636

Опубликовано: 08 июн. 2010
Источник: nvd
CVSS2: 2.1
EPSS Низкий

Описание

The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32, and possibly other versions, does not ensure that a cloned file descriptor has been opened for reading, which allows local users to read sensitive information from a write-only file descriptor.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:2.6.29:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.29.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.29.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.29.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.29.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.29.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.29.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.30.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.11:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.12:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.31.13:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.32:*:*:*:*:*:*:*

EPSS

Процентиль: 48%
0.00244
Низкий

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

ubuntu логотип

CVE-2010-1636

ubuntu
больше 15 лет назад

The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32, and possibly other versions, does not ensure that a cloned file descriptor has been opened for reading, which allows local users to read sensitive information from a write-only file descriptor.

debian логотип

CVE-2010-1636

debian
больше 15 лет назад

The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functi ...

github логотип

GHSA-5c4j-r3xw-v7jr

github
больше 3 лет назад

The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs functionality in the Linux kernel 2.6.29 through 2.6.32, and possibly other versions, does not ensure that a cloned file descriptor has been opened for reading, which allows local users to read sensitive information from a write-only file descriptor.

EPSS

Процентиль: 48%
0.00244
Низкий

2.1 Low

CVSS2

Дефекты

CWE-200