cvelist/2010/0xxx/CVE-2010-0727.json
2019-03-17 22:15:16 +00:00

117 lines
4.3 KiB
JSON

{
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2010-0727",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The gfs2_lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfs_lock function in the Linux kernel on Red Hat Enterprise Linux (RHEL) 5 and 6, does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service (BUG and system crash) by locking a file on a (1) GFS or (2) GFS2 filesystem, and then changing this file's permissions."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2010:0330",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2010-0330.html"
},
{
"name": "[oss-security] 20100312 CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/03/12/1"
},
{
"name": "RHSA-2010:0380",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2010-0380.html"
},
{
"name": "[linux-kernel] 20100311 [PATCH 3/3] GFS2: Skip check for mandatory locks when unlocking",
"refsource": "MLIST",
"url": "http://lkml.org/lkml/2010/3/11/269"
},
{
"name": "oval:org.mitre.oval:def:11392",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11392"
},
{
"name": "1023809",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1023809"
},
{
"name": "MDVSA-2010:066",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:066"
},
{
"name": "http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.34-rc1-next-20100312.bz2",
"refsource": "CONFIRM",
"url": "http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.34-rc1-next-20100312.bz2"
},
{
"name": "DSA-2053",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2010/dsa-2053"
},
{
"name": "RHSA-2010:0521",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2010-0521.html"
},
{
"name": "39830",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39830"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=570863",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=570863"
}
]
}
}