| Name | CVE-2005-3623 |
| Description | nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs for readonly mounted NFS filesystems. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| kernel-source-2.6.8 | source | sarge | (not affected) | |||
| linux-2.6 | source | (unstable) | 2.6.14-7 |
[sarge] - kernel-source-2.6.8 <not-affected> (Does not contain NFS ACLs)