Vigil@nce - Linux kernel: data read via XFS invalid filehandle
August 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can read data via an invalid XFS filehandle.
Severity: 1/4
Creation date: 23/08/2010
DESCRIPTION OF THE VULNERABILITY
On an XFS filesystem, a file is associated on disk to one ore more
inodes representing its data. A filehandle is an object
representing a file. It points among others to the file’s inodes.
When a file is deleted, its inodes are freed and the handle become
invalid. However, XFS does not correctly verifies the validity of
inodes when using an invalid handle.
An attacker can therefore read data via an invalid XFS handle.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-data-read-via-XFS-invalid-filehandle-9864