{
  "threat_severity" : "Moderate",
  "public_date" : "2010-06-17T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: xfs swapext ioctl minor security issue",
    "id" : "605158",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=605158"
  },
  "cvss" : {
    "cvss_base_score" : "3.6",
    "cvss_scoring_vector" : "AV:L/AC:L/Au:N/C:P/I:P/A:N",
    "status" : "verified"
  },
  "details" : [ "The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file into another file." ],
  "statement" : "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3, 4 and Red Hat Enterprise MRG as they did not include\nsupport for the XFS filesystem. A future kernel update in Red Hat Enterprise\nLinux 5 will address this issue.",
  "acknowledgement" : "Red Hat would like to thank Dan Rosenberg for reporting this issue.",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2010-08-10T00:00:00Z",
    "advisory" : "RHSA-2010:0610",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "kernel-0:2.6.18-194.11.1.el5"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2010-2226\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-2226" ],
  "name" : "CVE-2010-2226",
  "csaw" : false
}