Download
| Alert*
|
oval:org.secpod.oval:def:500089
The nfs-utils packages provide a daemon for the kernel Network File System server, and related tools such as the mount.nfs, umount.nfs, and showmount programs. A flaw was found in the way nfs-utils performed IP based authentication of mount requests. In configurations where a directory was exported ... oval:org.secpod.oval:def:1504141 [1.2.3-15] - mout.nfs: Don"t roll back to IPv4 whe IPv6 fails - rpcdebug: Added pNFS and FSCache debugging [1.2.3-14] - mount.nfs: Backported how upstream handles the SIGXFSZ signal [1.2.3-13] - mount.nfs: Reworked the code that deals with RLIMIT_FSIZE [1.2.3-12] - Removed the stripping of debug ... oval:org.secpod.oval:def:301076 A vulnerability has been discovered and corrected in nfs-utils: It was found that the mount.nfs tool did not handle certain errors correctly when updating the mtab file. A local attacker could use this flaw to corrupt the mtab file . The updated packages have been patched to correct this issue. oval:org.secpod.oval:def:500726 The nfs-utils package provides a daemon for the kernel Network File System server, and related tools such as the mount.nfs, umount.nfs, and showmount programs. It was found that the mount.nfs tool did not handle certain errors correctly when updating the mtab file. A local attacker could use this ... |
