kernel: nfsd: Incorrect handling of long RPC replies

The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote...

kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and...

CVE-2017-4979

EMC Isilon OneFS 8.0.1.0, OneFS 8.0.0.0 - 8.0.0.2, OneFS 7.2.1.0 - 7.2.1.3, and OneFS 7.2.0.x is affected by an NFS export vulnerability. Under certain conditions, after upgrading a cluster from OneFS 7.1.1.x or earlier, users may have unexpected levels of access to some NFS exports...

UBUNTU-CVE-2017-9059

The NFSv4 implementation in the Linux kernel through 4.11.1 allows local users to cause a denial of service resource consumption by leveraging improper channel callback shutdown when unmounting an NFSv4 filesystem, aka a "module reference and kernel daemon" leak...

The vulnerability of the NFSv2 and NFSv3 server implementations in the Linux operating system allows a hacker to trigger arithmetic pointer errors or exert other types of influence.

The vulnerability of NFSv2 and NFSv3 implementations in the Linux operating system’s kernel is related to integer overflows. Exploiting this vulnerability allows a malicious actor to execute arithmetic instructions with errors or to perform other actions using specially crafted requests related t...

Linux kernel denial of service vulnerability (CNVD-2017-06843)

Linux is an open source computer operating system kernel. A denial of service vulnerability exists in the NFSv2/NFSv3 server in the nfsd subsystem of Linux kernel version 4.10.11. It allows remote attackers to cause a denial of service via a long RPC reply...

UBUNTU-CVE-2017-7895

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and...

UBUNTU-CVE-2017-7645

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service system crash via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c...

PT-2017-2368 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.10.11 Description: The issue is related to the NFSv2/NFSv3 server in the nfsd subsystem, which allows remote attackers to cause a denial of service system crash via a long RPC reply. This is due to insufficien...

Integer overflow

The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated attacker may send massive abnormal Network File System NFS packets, causing an anomaly in specific disk arrays...

kernel: when NFSv4 migration is executed, kernel oops occurs at NFS client

A NULL pointer dereference flaw was found in the Linux kernel: the NFSv4.2 migration code improperly initialized the kernel structure. A local, authenticated user could use this flaw to cause a panic of the NFS client denial of service...

kernel: when NFSv4 migration is executed, kernel oops occurs at NFS client

A NULL pointer dereference flaw was found in the Linux kernel: the NFSv4.2 migration code improperly initialized the kernel structure. A local, authenticated user could use this flaw to cause a panic of the NFS client denial of service...

USN-3070-4 linux-lts-xenial vulnerabilities

USN-3070-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. A missing permission check when settings ACLs was discovered in nfsd. A local user cou...

DEBIAN-CVE-2016-1237

nfsd in the Linux kernel through 4.6.3 allows local users to bypass intended file-permission restrictions by setting a POSIX ACL, related to nfs2acl.c, nfs3acl.c, and nfs4acl.c...

UBUNTU-CVE-2016-1237

nfsd in the Linux kernel through 4.6.3 allows local users to bypass intended file-permission restrictions by setting a POSIX ACL, related to nfs2acl.c, nfs3acl.c, and nfs4acl.c...

Linux kernel nfsd Privilege Acquisition Vulnerability

Linux kernel is the kernel used by Linux, the operating system released by the Linux Foundation in the United States. nfsd is a daemon in the NFS Network File System server. A security vulnerability exists in the Linux kernel's nfsd. An attacker can exploit this vulnerability to set access contro...

EMC Data Domain Insecure NFS Load Option Vulnerability

EMC Data Domain systems are data protection storage solutions. EMC Data Domain versions 5.4, 5.5, 5.6, and 5.7 have a security vulnerability that enables an administrator user to create NFS exports, and the default use of norootsquash also enables clients to load NFS exports with root privileges...

Wireshark NFS Parser Denial of Service Vulnerability (CNVD-2016-02774)

Wireshark formerly known as Ethereal is a suite of network packet analysis software developed by the Wireshark team. A denial of service vulnerability exists in the NFS parser in Wireshark versions 2.0.2 prior to 2.x. A remote attacker can exploit this vulnerability to cause a denial of service...

DEBIAN-CVE-2016-4420

The NFS dissector in Wireshark 2.x before 2.0.2 allows remote attackers to cause a denial of service application crash via a crafted packet...

UBUNTU-CVE-2016-4420

The NFS dissector in Wireshark 2.x before 2.0.2 allows remote attackers to cause a denial of service application crash via a crafted packet...