CVE-2010-2798

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.35 drbd-kmp-default (affected versions not specified)

Description The issue affects the Linux kernel and the drbd-kmp-default package in openSUSE. In the Linux kernel, the gfs2 dirent find space function in fs/gfs2/dir.c uses an incorrect size value in calculations associated with sentinel directory entries. This allows local users to cause a denial of service, potentially leading to a NULL pointer dereference and panic, by renaming a file in a GFS2 filesystem. The gfs2 rename function in fs/gfs2/ops inode.c is also related to this issue. Additionally, multiple vulnerabilities in the drbd-kmp-default package may compromise the confidentiality, integrity, and availability of protected information, and can be exploited locally.

Recommendations For Linux kernel versions prior to 2.6.35, update to version 2.6.35 or later to resolve the issue. For drbd-kmp-default, at the moment, there is no information about a newer version that contains a fix for this vulnerability.