Nom du paquet
nfs-utils
Date
2011-12-12
Advisory ID
MDVSA-2011:186
Affected versions
MES5 i586 , MES5 x86_64 , 2010.1 i586 , 2010.1 x86_64

Problem description

A vulnerability has been discovered and corrected in nfs-utils:

It was found that the mount.nfs tool did not handle certain errors
correctly when updating the mtab (mounted file systems table)
file. A local attacker could use this flaw to corrupt the mtab file
(CVE-2011-1749).

The updated packages have been patched to correct this issue.

Updated packages

MES5 i586

 1267af5074d0f250ea50fa1f816cc7bc  mes5/i586/nfs-utils-1.1.3-10.3mdvmes5.2.i586.rpm
 b39e42c513fe9354c663e7da9bb5c136  mes5/i586/nfs-utils-clients-1.1.3-10.3mdvmes5.2.i586.rpm 
 72a3bcd0407307daacd5e63b7758ae64  mes5/SRPMS/nfs-utils-1.1.3-10.3mdvmes5.2.src.rpm

MES5 x86_64

 0fe6d6710db58f72f7f4bade38a9c741  mes5/x86_64/nfs-utils-1.1.3-10.3mdvmes5.2.x86_64.rpm
 84b6a01600724ac3bb2d2bd8a56fd919  mes5/x86_64/nfs-utils-clients-1.1.3-10.3mdvmes5.2.x86_64.rpm 
 72a3bcd0407307daacd5e63b7758ae64  mes5/SRPMS/nfs-utils-1.1.3-10.3mdvmes5.2.src.rpm

2010.1 i586

 783fba0c19265b5085ecabdb594c6aeb  2010.1/i586/nfs-utils-1.2.2-5.1mdv2010.2.i586.rpm
 73c7032c9e3e8233e130ca38f912a159  2010.1/i586/nfs-utils-clients-1.2.2-5.1mdv2010.2.i586.rpm 
 0b02667babf7b3fdbd2284dc2d7d63c9  2010.1/SRPMS/nfs-utils-1.2.2-5.1mdv2010.2.src.rpm

2010.1 x86_64

 a2fec775cd5a467748caf78b62c7ce1d  2010.1/x86_64/nfs-utils-1.2.2-5.1mdv2010.2.x86_64.rpm
 9447399cbd7623165af0bea26d2fa065  2010.1/x86_64/nfs-utils-clients-1.2.2-5.1mdv2010.2.x86_64.rpm 
 0b02667babf7b3fdbd2284dc2d7d63c9  2010.1/SRPMS/nfs-utils-1.2.2-5.1mdv2010.2.src.rpm

References