Unrated severityNVD Advisory· Published Apr 12, 2010· Updated Jun 16, 2026

CVE-2010-1146

Description

The Linux kernel 2.6.33.2 and earlier, when a ReiserFS filesystem exists, does not restrict read or write access to the .reiserfs_priv directory, which allows local users to gain privileges by modifying (1) extended attributes or (2) ACLs, as demonstrated by deleting a file under .reiserfs_priv/xattrs/.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <=2.6.33.2
Linux/Linux kernelllm-fuzzy
Range: <=2.6.33.2
osv-coords
pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Tumbleweed
Range: < 4.8.13-1.1

Patches

Vulnerability mechanics

References

marc.infonvdMailing ListPatchThird Party Advisory
www.exploit-db.com/exploits/12130nvdExploitThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/39344nvdExploitThird Party AdvisoryVDB Entry
bugzilla.redhat.com/show_bug.cginvdExploitIssue TrackingPatchThird Party Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/57782nvdThird Party AdvisoryVDB Entry
osvdb.org/63601nvdBroken Link
secunia.com/advisories/39316nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000