ALT-PU-2022-3227-3
Closed vulnerabilities
Published: 2013-09-30
BDU:2015-03334
Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Severity: HIGH (7.2)
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
References:
Published: 2005-05-31
Modified: 2025-04-03
Modified: 2025-04-03
CVE-2005-1774
WEB-DAV Linux File System (davfs2) 0.2.3 does not properly enforce Unix permissions, which allows local users to write arbitrary files on a davfs2 mounted filesystem.
Severity: LOW (2.1)
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N
References:
Published: 2013-09-30
Modified: 2025-04-11
Modified: 2025-04-11
CVE-2013-4362
WEB-DAV Linux File System (davfs2) 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in (1) kernel_interface.c and (2) mount_davfs.c, related to the "system" function.
Severity: HIGH (7.2)
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
References:
- http://osvdb.org/97416
- http://osvdb.org/97417
- http://savannah.nongnu.org/bugs/?40034
- http://seclists.org/oss-sec/2013/q3/627
- http://www.debian.org/security/2013/dsa-2765
- http://www.securityfocus.com/bid/62445
- https://security.gentoo.org/glsa/201612-02
- http://osvdb.org/97416
- http://osvdb.org/97417
- http://savannah.nongnu.org/bugs/?40034
- http://seclists.org/oss-sec/2013/q3/627
- http://www.debian.org/security/2013/dsa-2765
- http://www.securityfocus.com/bid/62445
- https://security.gentoo.org/glsa/201612-02
Closed bugs
mount.davfs "из коробки" не работает от рута
Перестал работать mount.davfs