cpe:/a:suse:suse_linux_openexchange_server:4.0 cpe:/a:suse:suse_linux_school_server:gold::i386 cpe:/a:suse:suse_linux_standard_server:8.0 cpe:/a:suse:suse_open_enterprise_server:9 cpe:/a:xfsdump:xfsdump:2.2.38 cpe:/o:suse:opensuse:10.2 cpe:/o:suse:suse_linux:1.0::desktop cpe:/o:suse:suse_linux:8::enterprise_server cpe:/o:suse:suse_linux:9.0::enterprise_server CVE-2007-2654 2007-05-14T17:19:00.000-04:00 2008-11-13T00:00:00.000-05:00 4.4 LOCAL MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-05-16T15:21:00.000-04:00 BID 23922 SECUNIA 25220 SECUNIA 25425 SECUNIA 25761 SECUNIA 26867 OSVDB 36716 MANDRIVA MDKSA-2007:134 SUSE SUSE-SR:2007:010 UBUNTU USN-516-1 MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=417894 xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems.