Description
xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
References (4)
Core 4
Core References
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/111673
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2003:047
Patch, Vendor Advisory vendor-advisory
x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20030404-01-P
Patch, Vendor Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2003/dsa-283
Scores
EPSS
0.0008
EPSS Percentile
24.4%
Details
Status
published
Products (50)
sgi/irix
6.5
sgi/irix
6.5.1
sgi/irix
6.5.2
sgi/irix
6.5.2f
sgi/irix
6.5.2m
sgi/irix
6.5.3
sgi/irix
6.5.3f
sgi/irix
6.5.3m
sgi/irix
6.5.4
sgi/irix
6.5.4f
... and 40 more
Published
May 05, 2003
Tracked Since
Feb 18, 2026