CVE-2007-6733

Priority
Low
Description
The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not
properly remove POSIX locks on files that are setgid without group-execute
permission, which allows local users to cause a denial of service (BUG and
system crash) by locking a file on an NFS filesystem and then changing this
file's permissions, a related issue to CVE-2010-0727.
References
Notes
kees> predates Dapper
Package
Upstream:not-affected
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:not-affected
Ubuntu 8.04 LTS (Hardy Heron):not-affected
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:29 UTC (commit 5347)