Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2012-0310

Опубликовано: 01 мар. 2012
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2012-0310: nfs-utils security, bug fix, and enhancement update (LOW)

[1.0.9-60.0.1.el5]

  • Add support for resvport for unmonting [orabug 13567018]

[1.0.9-60]

  • Updated idmapd.conf and idmapd.conf.man to reflect the static user name mapping (502707)
  • Fixed an umount regression introduced by bz 513094 (bz 781931)

[1.0.9-59]

  • gss: turned of even more excessive syslogs (bz 593097)
  • mount.nfs: Ignored the SIGXFSZ when handling RLIMIT_FSIZE changes (bz 697979)

[1.0.9-58]

  • gss: turned off more excessive syslogs (bz 593097)
  • initfiles: more initscripts improvements (bz 710020)
  • specfile: correct typo when nfsnobodys gid already exists (bz 729603)

[1.0.9-57]

  • Mount fails to anticipate RLIMIT_FSIZE (bz 697979,CVE-2011-1749)

[1.0.9-56]

  • Removed sim crash support (bz 600497)
  • initfiles: more initscripts improvements (bz 710020)
  • mount: Don't wait for TCP to timeout twice (bz 736677)

[1.0.9-55]

  • mount: fixed the -o retry option to retry the given amount (bz 736677)
  • manpage: removed the -o fsc option (bz 715523)
  • nfsstat: show v4 mounts with -m flag (bz 712438)
  • mount: allow insecure ports with mounts (bz 513094)
  • gss: turned off excessive syslogs (bz 593097)
  • mountd: allow v2 and v3 to be disabled (bz 529588)
  • specfile: make sure nfsnobodys gid changes when it exists (bz 729603)
  • initfiles: initscripts improvements (bz 710020)

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

nfs-utils

1.0.9-60.0.1.el5

Oracle Linux x86_64

nfs-utils

1.0.9-60.0.1.el5

Oracle Linux i386

nfs-utils

1.0.9-60.0.1.el5

Связанные CVE

CVE-2011-1749

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2011-1749

ubuntu
больше 11 лет назад

The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

redhat логотип

CVE-2011-1749

redhat
больше 14 лет назад

The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

nvd логотип

CVE-2011-1749

nvd
больше 11 лет назад

The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

debian логотип

CVE-2011-1749

debian
больше 11 лет назад

The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.ns ...

github логотип

GHSA-c72p-cwvx-7724

github
больше 3 лет назад

The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.