Описание
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 5.0-1ubuntu2 |
| hardy | DNE | |
| karmic | DNE | |
| lucid | DNE | |
| maverick | released | 2:4.5-2ubuntu0.10.10.1 |
| natty | released | 2:4.5-2ubuntu0.11.04.1 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | moved to cifs-utils |
| hardy | released | 3.0.28a-1ubuntu4.16 |
| karmic | ignored | end of life |
| lucid | released | 2:3.4.7~dfsg-1ubuntu3.8 |
| maverick | not-affected | moved to cifs-utils |
| natty | not-affected | moved to cifs-utils |
| upstream | needs-triage |
Показывать по
EPSS
3.3 Low
CVSS2
Связанные уязвимости
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to app ...
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
EPSS
3.3 Low
CVSS2