1
Candidate: CVE-2009-4411
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4411
6
The (1) setfacl and (2) getfacl commands in XFS acl 2.2.47, when running in
7
recursive (-R) mode, follow symbolic links even when the --physical (aka
8
-P) or -L option is specified, which might allow local users to modify the
9
ACL for arbitrary files or directories via a symlink attack.
12
sbeattie> hardy may not be needed, according to debian bug report the
13
sbeattie> issue may have introduced in 2.2.46.
15
debian: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499076
16
upstream: http://savannah.nongnu.org/bugs/?28131
23
dapper_acl: ignored (reached end-of-life)
24
hardy_acl: ignored (reached end-of-life)
25
intrepid_acl: needed (reached end-of-life)
26
jaunty_acl: ignored (reached end-of-life)
27
karmic_acl: ignored (reached end-of-life)
28
lucid_acl: not-affected (2.2.49-2)
29
maverick_acl: not-affected (2.2.49-2)
30
natty_acl: not-affected (2.2.49-2)
31
oneiric_acl: not-affected (2.2.49-2)
32
precise_acl: not-affected (2.2.49-2)
33
quantal_acl: not-affected (2.2.49-2)
34
raring_acl: not-affected (2.2.49-2)
35
devel_acl: not-affected (2.2.49-2)