[Midnightbsd-cvs] [MidnightBSD/src] 459d29: A NFS server that exports a cd9660, tarfs, or ext2...
Lucas Holt
noreply at github.com
Wed Jan 29 19:43:38 EST 2025
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 459d2997d86265bf5b9eae927d7bad58e9cf6d78
https://github.com/MidnightBSD/src/commit/459d2997d86265bf5b9eae927d7bad58e9cf6d78
Author: Lucas Holt <luke at foolishgames.com>
Date: 2025-01-29 (Wed, 29 Jan 2025)
Changed paths:
M sys/fs/cd9660/cd9660_vnops.c
M sys/fs/cd9660/iso.h
M sys/fs/ext2fs/ext2_vnops.c
M sys/fs/ext2fs/inode.h
Log Message:
-----------
A NFS server that exports a cd9660, tarfs, or ext2fs file system can be made
to panic by mounting and accessing the export with an NFS client. Further
exploitation (e.g., bypassing file permission checking or remote kernel code
execution) is potentially possible, though this has not been demonstrated. In
particular, release kernels are compiled with stack protection enabled, and
some instances of the overflow are caught by this mechanism, causing a panic.
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
More information about the Midnightbsd-cvs
mailing list