CVE-2010-1088

Upstream information

CVE-2010-1088 at MITRE

Description

fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount "symlinks," which allows attackers to have an unknown impact, related to LOOKUP_FOLLOW.

---

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores

	National Vulnerability Database
Base Score	5.4
Vector	AV:N/AC:H/Au:N/C:N/I:N/A:C
Access Vector	Network
Access Complexity	High
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Complete

SUSE Bugzilla entries: 582552 [RESOLVED / FIXED], 605463 [RESOLVED / FIXED]

SUSE Security Advisories:

• SUSE-SA:2010:019, published Tue, 30 Mar 2010 10:00:00 +0000
• SUSE-SA:2010:023, published Thu, 06 May 2010 13:00:00 +0000
• SUSE-SA:2010:036, published Wed, 01 Sep 2010 11:00:00 +0000

---

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 04:05:11 2013
CVE page last modified: Fri Dec 8 16:38:31 2023