Veracode Vulnerability DatabaseVERACODE:44377File Overwrite
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
7.1 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
38.4%
libzfs.so is vulnerable to File Overwrite. The vulnerability is due to dnode_is_dirty function in dnode.c because there are no checks for detailed modification records for the dnode, it’s only checking the dn->dn_dirty_link array to determine if the dnode is dirty. This can leads to file contents being replaced with zero-valued bytes, especially during data copying processes and can disable or weaken security mechanisms in certain applications, like those involving access control files.
References
bugs.freebsd.org/bugzilla/show_bug.cgi?id=275308
bugs.gentoo.org/917224
github.com/openzfs/zfs/issues/15526
github.com/openzfs/zfs/pull/15571
github.com/openzfs/zfs/pull/15571/commits/dca97839f42f28dd4d01c499b30e5eb056e82a36
github.com/openzfs/zfs/releases/tag/zfs-2.1.14
github.com/openzfs/zfs/releases/tag/zfs-2.2.2
lists.debian.org/debian-lts-announce/2024/03/msg00019.html
news.ycombinator.com/item?id=38405731
news.ycombinator.com/item?id=38770168
web.archive.org/web/20231124172959/https://www.ibm.com/support/pages/how-remove-missing%C2%A0newline%C2%A0or%C2%A0line%C2%A0too%C2%A0long-error-etchostsallow%C2%A0and%C2%A0etchostsdeny-files
www.theregister.com/2023/12/04/two_new_versions_of_openzfs/
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
7.1 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
38.4%