Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2011-1749

The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

Related bugs and status

CVE-2011-1749 (Candidate) is related to these bugs:

Bug #728586: convert rpcbind to Upstart

Summary				In	Importance	Status
	728586	convert rpcbind to Upstart		rpcbind (Ubuntu)	High	Fix Released
	728586	convert rpcbind to Upstart		nfs-utils (Ubuntu)	Medium	Fix Released

Bug #789117: proposed nfs-utils merge

Summary				In	Importance	Status
	789117	proposed nfs-utils merge		nfs-utils (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.redha...
MISC: http://rhn.redhat.com/...
MISC: http://rhn.redhat.com/...
MISC: http://www.openwall.co...
MISC: http://sourceforge.net...