1866254 – (CVE-2011-0463) CVE-2011-0463 kernel: ocfs2_prepare_page_for_write function does not properly handle holes that cross page boundaries leads to information exposure

Bug 1866254 (CVE-2011-0463) - CVE-2011-0463 kernel: ocfs2_prepare_page_for_write function does not properly handle holes that cross page boundaries leads to information exposure

Summary: CVE-2011-0463 kernel: ocfs2_prepare_page_for_write function does not properly...

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2011-0463
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1866255
Blocks:	1866256
TreeView+	depends on / blocked

Reported:	2020-08-05 08:30 UTC by Dhananjay Arunesh
Modified:	2021-11-12 20:07 UTC (History)
CC List:	47 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2020-08-05 19:27:54 UTC
Embargoed:

Attachments	(Terms of Use)

Description Dhananjay Arunesh 2020-08-05 08:30:58 UTC

The ocfs2_prepare_page_for_write function in fs/ocfs2/aops.c in the Oracle Cluster File System 2 (OCFS2) subsystem in the Linux kernel does not properly handle holes that cross page boundaries, which allows local users to obtain potentially sensitive information from uninitialized disk locations by reading a file.

References:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=272b62c1f0f6f742046e45b50b6fec98860208a0
http://oss.oracle.com/pipermail/ocfs2-devel/2011-February/007846.html
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc1

Comment 1 Dhananjay Arunesh 2020-08-05 08:33:48 UTC

Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1866255]

Comment 2 Alex 2020-08-05 13:14:30 UTC

"OCFS2 kernel module" disabled by default for all kernels of rhel*.

Comment 3 Justin M. Forbes 2020-08-05 16:08:42 UTC

This was fixed upstream almost 9 years ago, and has never impacted any currently supported version of Fedora.

Comment 4 Product Security DevOps Team 2020-08-05 19:27:54 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2011-0463

Note You need to log in before you can comment on or make changes to this bug.

acaringi
airlied
bhu
blc
bmasney
brdeoliv
bskeggs
dhoward
dvlasenk
esammons
fhrbata
hdegoede
hkrzesin
iboverma
ichavero
itamar
jarodwilson
jeremy
jforbes
jglisse
jlelli
john.j5live
jonathan
josef
jross
jshortt
jstancek
jwboyer
kcarcia
kernel-maint
kernel-mgr
labbott
lgoncalv
linville
masami256
matt
mchehab
mcressma
mjg59
mlangsdo
nmurray
ptalbert
qzhao
rt-maint
rvrbovsk
steved
williams