The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-02-26 07:55
Updated : 2014-03-10 14:29
NVD link : CVE-2011-1749
Mitre link : CVE-2011-1749
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
linux-nfs
- nfs-utils