Privacy and Legal Notice

DOE-CIRC TECHNICAL BULLETIN

T-163: Linux Kernel NFS 'MAY_EXEC' Security Bypass Vulnerability

[CVE-2009-1630]

June 17, 2009 15:00 GMT
PROBLEM: Linux Kernel is vulnerable to security bypass via "NFS MAY_EXEC".
PLATFORM: Linux platforms using NFS implementations.
ABSTRACT: The Linux Kernel is prone to an security-bypass vulnerability that affects the NFS (Network File System) implementation.
LINKS:  
  DOE-CIRC BULLETIN: http://www.doecirc.energy.gov/bulletins/t-163.shtml
  OTHER LINKS: Security Focus
http://www.securityfocus.com/bid/34934/info
Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=500297
Gmane
http://article.gmane.org/gmane.linux.nfs/26592
Permalink
http://permalink.gmane.org/gmane.comp.security.oss.general/1751
Kernel.org
http://www.kernel.org/
IMPACT ASSESSMENT This risk is rated high. Privilege escalation. 
[***** Start CVE-2009-1630 *****]
Discussion:
The Linux Kernel is prone to an security-bypass vulnerability that affects the NFS (Network File System) implementation.

An attacker can exploit this issue to perform privileged operations on a vulnerable computer, which may aid in further
attacks.

An attacker can exploit this issue by using readily available tools.

Updates are available. Please see the references for more information.
[***** End CVE-2009-1630 *****]
DOE-CIRC wishes to acknowledge the contributions of Frank Filz for the information contained in this bulletin.
DOECIRC services are available to DOE, DOE Contractors, and the NIH. DOE-CIRC can be contacted at: 
    Voice:          866-941-2472
    E-mail:          doecirc@doecirc.energy.gov
    World Wide Web:  http://www.doecirc.energy.gov
UCRL-MI-119788