Linux kernel built a XFS file system support(CONFIG_XFS_FS) along with the Compat mode(CONFIG_COMPAT) enabled, is vulnerable to an invalid pointer dereference flaw. It could occur while doing a Compat ioctl call with a XFS_IOC_ATTRLIST_BY_HANDLE command. A privileged(CAP_SYS_ADMIN) user/program could use this flaw to either make the system dereference invalid pointer or potentially cause memory corruption. Upstream fix: ------------- -> http://www.spinics.net/lists/xfs/msg23343.html Reference: ---------- -> http://seclists.org/oss-sec/2013/q4/330
nt
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1034670]
Statement: The Red Hat Security Response Team does not consider this issue to be a security flaw due to the full root-like privileges (CAP_SYS_ADMIN) needed for successful exploitation.
kernel-3.11.10-300.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
kernel-3.11.10-200.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
kernel-3.11.10-100.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.