CVE-2009-1072
UnknownEPSS 0.43%
Last modified
CVE-2009-1072 is a vulnerability of currently unknown severity. nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.. EPSS estimates a 0.43% chance of exploitation in the next 30 days.
Description
nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | < 2.6.28.9 | — |
| Opensuse | Opensuse | 10.3 | — |
| Opensuse | Opensuse | 11.0 | — |
| Opensuse | Opensuse | 11.1 | — |
| Suse | Linux Enterprise Desktop | 10 | Sp2 |
| Suse | Linux Enterprise Server | 10 | Sp2 |
| Debian | Debian Linux | 4.0 | — |
| Debian | Debian Linux | 5.0 | — |
| Canonical | Ubuntu Linux | 6.06 | — |
| Canonical | Ubuntu Linux | 8.04 | — |
| Canonical | Ubuntu Linux | 8.10 | — |
| Canonical | Ubuntu Linux | 9.04 | — |
| Vmware | Vcenter Server | 4.0 | — |
| Vmware | Virtualcenter | 2.0.2 | — |
| Vmware | Virtualcenter | 2.5 | — |
| Vmware | Server | 2.0.0 | — |
| Vmware | Esx | 3.0.3 | — |
| Vmware | Esx | 3.5 | — |
| Vmware | Esx | 4.0 | — |
| Vmware | Vma | 4.0 | — |
References
- http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00007.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00002.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.htmlMailing List, Third Party Advisory
- http://secunia.com/advisories/34422Broken Link
- http://secunia.com/advisories/34432Broken Link
- http://secunia.com/advisories/34786Broken Link
- http://secunia.com/advisories/35121Broken Link
- http://secunia.com/advisories/35185Broken Link
- http://secunia.com/advisories/35343Broken Link
- http://secunia.com/advisories/35390Broken Link
- http://secunia.com/advisories/35394Broken Link
- http://secunia.com/advisories/35656Broken Link
- http://secunia.com/advisories/37471Broken Link
- http://www.debian.org/security/2009/dsa-1800Third Party Advisory
- http://www.openwall.com/lists/oss-security/2009/03/23/1Mailing List, Third Party Advisory
- http://www.securityfocus.com/archive/1/507985/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/34205Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/usn-793-1Third Party Advisory
- http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49356Third Party Advisory, VDB Entry
- http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00007.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00002.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.htmlMailing List, Third Party Advisory
- http://secunia.com/advisories/34422Broken Link
- http://secunia.com/advisories/34432Broken Link
- http://secunia.com/advisories/34786Broken Link
- http://secunia.com/advisories/35121Broken Link
- http://secunia.com/advisories/35185Broken Link
- http://secunia.com/advisories/35343Broken Link
- http://secunia.com/advisories/35390Broken Link
- http://secunia.com/advisories/35394Broken Link
- http://secunia.com/advisories/35656Broken Link
- http://secunia.com/advisories/37471Broken Link
- http://www.debian.org/security/2009/dsa-1800Third Party Advisory
- http://www.openwall.com/lists/oss-security/2009/03/23/1Mailing List, Third Party Advisory
- http://www.securityfocus.com/archive/1/507985/100/0/threadedThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/34205Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/usn-793-1Third Party Advisory
- http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49356Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2009-1072?
nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.
How severe is CVE-2009-1072?
Severity scoring for CVE-2009-1072 is pending analysis. The EPSS model estimates a 0.43% probability of exploitation in the next 30 days.
How do I fix CVE-2009-1072?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2009-1072?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST