SUSE CVE-2009-1072

🗓️ 15 Feb 2023 06:04:40Reported by Suse CVEType

SUSE CVE-2009-1072: Linux kernel nfsd does not drop CAP_MKNOD, enabling local users to create device nodes on root_squash exports.

Reporter	Title	Published	Views	Family All 84
BDU FSTEC	Vulnerabilities of the SUSE Linux Enterprise operating system, which allow a malicious individual to compromise the integrity of protected information	29 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the SUSE Linux Enterprise operating system, which allow a malicious individual to compromise the integrity of protected information	29 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the SUSE Linux Enterprise operating system, which allow a malicious individual to compromise the integrity of protected information	29 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the integrity of protected information	29 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the integrity of protected information	29 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the integrity of protected information	29 Apr 201500:00	–	bdu_fstec
Tenable Nessus	CentOS 5 : kernel (CESA-2009:1106)	6 Jan 201000:00	–	nessus
Tenable Nessus	Debian DSA-1800-1 : linux-2.6 - denial of service/privilege escalation/sensitive memory leak	18 May 200900:00	–	nessus
Tenable Nessus	MiracleLinux 3 : kernel-2.6.18-53.25AXS3 (AXSA:2009-71:06)	14 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 5 : kernel (ELSA-2009-1106)	12 Jul 201300:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Server	11	any	ext4dev-kmp-default	0_2.6.27.21_0.1-7.1.2	ext4dev-kmp-default-0_2.6.27.21_0.1-7.1.2.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ext4dev-kmp-default	0_2.6.27.21_0.1-7.1.2	ext4dev-kmp-default-0_2.6.27.21_0.1-7.1.2.noarch.rpm
SUSE Linux Enterprise Server	11	any	ext4dev-kmp-pae	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-pae-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ext4dev-kmp-pae	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-pae-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server	11	any	ext4dev-kmp-ppc64	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-ppc64-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ext4dev-kmp-ppc64	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-ppc64-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server	11	any	ext4dev-kmp-vmi	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-vmi-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ext4dev-kmp-vmi	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-vmi-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server	11	any	ext4dev-kmp-xen	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-xen-0_2.6.27.23_0.1-7.1.7.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ext4dev-kmp-xen	0_2.6.27.23_0.1-7.1.7	ext4dev-kmp-xen-0_2.6.27.23_0.1-7.1.7.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2009-1072
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/487681
bugzilla	www.bugzilla.suse.com/497551
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/TU3XWDG6LGWTZHOB5PQE5CKQ2OIHYECG/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/WA7U7YS2I4IX4N246AGSFIA3QRUEYISY/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/VMT5WZZAXN6WOUZSX4YFP5OHCSHB43UZ/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/WD5YHDKZ4LLVCMXA4H3RGT2EZCHRTGBD/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/WOBCJ2UP3OWQ4XJ5H43IICA2CCMYGSYA/

08 Jun 2026 02:08Current

6.2Medium risk

Vulners AI Score6.2

CVSS 24.9

EPSS0.00591