Wind River Support Network

HomeDefectsLIN8-12807
Not to be fixed

LIN8-12807 : Security Advisory - linux - CVE-2020-24394

Created: Aug 19, 2020    Updated: Jan 10, 2021
Resolved Date: Jan 10, 2021
Found In Version: 8.0.0.1
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel

Description

In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131. This occurs because the current umask is not considered.

CREATE(Triage):(User=admin) [CVE-2020-24394|https://nvd.nist.gov/vuln/detail/CVE-2020-24394]
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube