Launchpad CVE tracker

CVE 2010-2961

mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file.

Related bugs and status

CVE-2010-2961 (Candidate) is related to these bugs:

Bug #591807: mountall creates /dev/.udev/rules.d/root.rules with mode 0666

		In	Importance	Status
591807	mountall creates /dev/.udev/rules.d/root.rules with mode 0666	mountall (Ubuntu)	High	Fix Released
591807	mountall creates /dev/.udev/rules.d/root.rules with mode 0666	mountall (Ubuntu Lucid)	High	Fix Released
591807	mountall creates /dev/.udev/rules.d/root.rules with mode 0666	mountall (Ubuntu Maverick)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugs.launchpad...
UBUNTU: USN-985-1
OSVDB: 67914
SECUNIA: 41351
VUPEN: ADV-2010-2342

Launchpad.net

CVE 2010-2961

Related bugs and status

Related bugs

References