Wind River Support Network

HomeDefectsLIN7-6479

Fixed

LIN7-6479 : Security Advisory - linux - CVE-2016-1237

Created: Jun 29, 2016 Updated: Sep 8, 2018

Resolved Date: Jul 31, 2016

Found In Version: 7.0

Fix Version: 7.0.0.19

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Kernel

Description

It was found that nfsd is missing permissions check when setting ACL, which allows local users to gain access to any file by setting ACL.

Introduced in v3.14-rc1 by following commit:

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4ac7249ea5a0ceef9f8269f63f33cc873c3fac61

Upstream fix:

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=999653786df6954a31044528ac3f7a5dadca08f4

Prerequisite for the fix: 

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=485e71e8fb6356c08c7fc6bcce4bf02c9a9a663f

Other Downloads

Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-1237