Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 09 Jul 2010 07:48:44 -1000
From: akuster <>
To: Dan Rosenberg <>
Subject: Re: kernel: gfs2 acl issue


Is 2.6.32 the earliest kernel showing the problem or just what was tested?


On 07/08/2010 05:56 PM, Dan Rosenberg wrote:
> To elaborate on the issue: the gfs2 filesystem in 2.6.32 kernels
> currently allows any user to set arbitrary ACLs for files they do not
> own, essentially granting full access to everything.  The source of
> this problem also caused other misbehavior of ACLs.  This fix resolved
> the issue for 2.6.33, but it was not backported, so 2.6.32 remains
> vulnerable.
> -Dan
> On Thu, Jul 8, 2010 at 11:47 PM, Eugene Teo <> wrote:
>> Upstream commit 2646a1f6 (2.6.33-rc1) fixed an interesting gfs2 acl issue
>> late last year. Thanks Dan Rosenberg for informing us about this.
>> I didn't request a CVE name for this but if you need one, ping Steve.
>> Thanks, Eugene
>> --
>> main(i) { putchar(182623909 >> (i-1) * 5&31|!!(i<7)<<6) && main(++i); }

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ