CVE-2010-1636

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.6.29 through 2.6.32

Description The issue arises from the btrfs ioctl clone function in fs/btrfs/ioctl.c, which does not verify if a cloned file descriptor is opened for reading. This oversight allows local users to access sensitive information from a file descriptor that is supposed to be write-only.

Recommendations For Linux kernel versions 2.6.29 through 2.6.32, consider restricting access to the btrfs ioctl clone function until a patch is available. As a temporary workaround, ensure that all file descriptors are properly validated to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.