oss-sec mailing list archives
Re: CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission
From: Eugene Teo <eugene () redhat com>
Date: Wed, 20 May 2009 12:06:09 +0800
Eugene Teo wrote:
Frank Filz reported: the problem is that permission checking is skipped if atomic open is possible, but when exec opens a file, it just opens it O_READONLY which means EXEC permission will not be checked at that time.
Upstream commit: 7ee2cb7f32b299c2b06a31fde155457203e4b7dd Thanks, Eugene
Current thread:
- CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission Eugene Teo (May 13)
- Re: CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission Eugene Teo (May 19)
- Re: CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission Steven M. Christey (May 21)