CVE-2010-2538

CVSS 5.5 - MEDIUM
Description

Integer overflow in the btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 might allow local users to obtain sensitive information via a BTRFS_IOC_CLONE_RANGE ioctl call.

Affected Products
7
Vendor Product Version
linux linux_kernel All versions
canonical ubuntu_linux 9.10
canonical ubuntu_linux 10.04
canonical ubuntu_linux 10.10
suse linux_enterprise_desktop 11
suse linux_enterprise_high_availability_extension 11
suse linux_enterprise_server 11
References
http://git.kernel.org/?p=linux/kernel/git/torvalds...
http://lists.opensuse.org/opensuse-security-announ...
http://secunia.com/advisories/42758
http://www.kernel.org/pub/linux/kernel/v2.6/Change...
http://www.openwall.com/lists/oss-security/2010/07...
http://www.openwall.com/lists/oss-security/2010/07...
http://www.securityfocus.com/bid/41854
http://www.ubuntu.com/usn/USN-1041-1
http://www.vupen.com/english/advisories/2011/0070
https://bugzilla.redhat.com/show_bug.cgi?id=616998
http://git.kernel.org/?p=linux/kernel/git/torvalds...
http://lists.opensuse.org/opensuse-security-announ...
http://secunia.com/advisories/42758
http://www.kernel.org/pub/linux/kernel/v2.6/Change...
http://www.openwall.com/lists/oss-security/2010/07...
http://www.openwall.com/lists/oss-security/2010/07...
http://www.securityfocus.com/bid/41854
http://www.ubuntu.com/usn/USN-1041-1
http://www.vupen.com/english/advisories/2011/0070
https://bugzilla.redhat.com/show_bug.cgi?id=616998
Weakness Types
CWE-200
CVE Information
CVE ID:
CVE-2010-2538
Published:
2010-09-30
Modified:
2026-04-29
CVSS Score:
5.5
Severity:
MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Vendors
linux canonical suse
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL