The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils prior to 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux-nfs nfs-utils |
||
linux-nfs nfs-utils 1.2.0 |
||
linux-nfs nfs-utils 1.2.1 |
||
linux-nfs nfs-utils 1.2.2 |