Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:19298
HistoryMar 19, 2010 - 12:00 a.m.

Linux Kernel nfs_lock函数本地拒绝服务漏洞

2010-03-1900:00:00
Root
www.seebug.org
15

0.0004 Low

EPSS

Percentile

5.7%

JSON

CVE(CAN) ID: CVE-2007-6733

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel的fs/nfs/file.c文件中的nfs_lock函数没有正确的删除对setgid未设置group-execute权限文件的 POSIX锁定,这允许本地用户通过在NSF文件系统上锁定文件然后再更改该文件的权限导致系统崩溃。

Linux kernel 2.6.9
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://lkml.org/lkml/2005/12/21/334

Related

cve 1
ubuntucve 1
prion 1
nessus 2
openvas 2
suse 1
cve
cve
CVE-2007-6733
2010-03-16 19:30:00
ubuntucve
ubuntucve
CVE-2007-6733
2010-03-16 00:00:00
prion
prion
Sql injection
2010-03-16 19:30:00
nessus
nessus
RHEL 5 : kernel (RHSA-2010:0178)
2010-05-11 00:00:00
SuSE9 Security Update : Linux kernel (YOU Patch Number 12636)
2010-08-27 00:00:00
openvas
openvas
SuSE Update for kernel SUSE-SA:2010:036
2010-09-10 00:00:00
SuSE Update for kernel SUSE-SA:2010:036
2010-09-10 00:00:00
suse
suse
remote denial of service in kernel
2010-09-01 13:59:34

0.0004 Low

EPSS

Percentile

5.7%

JSON
Related for SSV:19298
cve1ubuntucve1prion1nessus2openvas2suse1