CVE-2009-1630

CVE-2009-1630 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel 2.6.29.3 and earlier, when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.