- Description
- The reiserfs_copy_from_user_to_file_region function in reiserfs/file.c for Linux kernel 2.6.10 and 2.6.11 before 2.6.11-rc4, when running on 64-bit architectures, may allow local users to trigger a buffer overflow as a result of casting discrepancies between size_t and int data types.
- Source
- secalert@redhat.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:N/I:N/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2CDE1E92-C64D-4A3B-95A2-384BD772B28B"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D90502F-EC45-4ADC-9428-B94346DA660B"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D8DE0233-BE28-4C0A-B9FB-2157F41F8D4F"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2422569B-02ED-4028-83D8-D778657596B7"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E66E4653-1A55-4827-888B-E0776E32ED28"
}
],
"operator": "OR"
}
]
}
]