QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2009-1072

Back to search

CVE-2009-1072

Published: Mar 25, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.

VendorProductVersions

n/a

n/a

affected
n/a

References

35390
third-party-advisory
x_refsource_SECUNIA
34432
third-party-advisory
x_refsource_SECUNIA
34422
third-party-advisory
x_refsource_SECUNIA
ADV-2009-0802
vdb-entry
x_refsource_VUPEN
34786
third-party-advisory
x_refsource_SECUNIA
34205
vdb-entry
x_refsource_BID
SUSE-SA:2009:028
vendor-advisory
x_refsource_SUSE
37471
third-party-advisory
x_refsource_SECUNIA
35656
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2009:030
vendor-advisory
x_refsource_SUSE
35185
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10314
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:8382
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2009:031
vendor-advisory
x_refsource_SUSE
SUSE-SA:2009:021
vendor-advisory
x_refsource_SUSE
USN-793-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2009:1081
vendor-advisory
x_refsource_REDHAT
DSA-1800
vendor-advisory
x_refsource_DEBIAN
35343
third-party-advisory
x_refsource_SECUNIA
35121
third-party-advisory
x_refsource_SECUNIA
ADV-2009-3316
vdb-entry
x_refsource_VUPEN
35394
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now