CVE-2007-3740

Priority
Description
The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension
support is enabled, does not honor the umask of a process, which allows
local users to gain privileges.
Ubuntu-Description
It was discovered that certain CIFS filesystem actions did not honor the umask
of a process. Local attackers could exploit this to gain additional privileges.
Notes
Package
Upstream:needed
Package
Upstream:needed
Package
Upstream:needed
Package
Upstream:released (2.6.22)
Ubuntu 20.04 (Focal Fossa):released (2.6.22-12.39)
More Information

Updated: 2020-01-29 19:27:53 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)