nfs-utils (1:1.3.4-2.1ubuntu5.3) bionic-security; urgency=medium

  * SECURITY UPDATE: privilege escalation via directory permissions
    - debian/patches/CVE-2019-3689.patch: take user-id from
      /var/lib/nfs/sm in support/nsm/file.c, utils/statd/,
    - debian/nfs-common.postinst: don't make /var/lib/nfs owned by statd.
    - CVE-2019-3689

 -- Marc Deslauriers <email address hidden>  Tue, 09 Jun 2020 08:15:08 -0400

Uploaded by:
Marc Deslauriers on 2020-06-09
Ubuntu Developers
Medium Urgency

Series Pocket Published Component Section
Bionic security on 2020-06-22 main net


File Size SHA-256 Checksum
nfs-utils_1.3.4.orig.tar.xz 588.1 KiB b42a5bc0a8d80d04650030ceb9a11f08f4acfbcb1ee297f657fb94e339c45975
nfs-utils_1.3.4-2.1ubuntu5.3.debian.tar.bz2 49.8 KiB 29b15add453d828471cfa36bdebb2246de4cbbe05fe46f00b968bbd4828f9905
nfs-utils_1.3.4-2.1ubuntu5.3.dsc 2.4 KiB 6b2169cc5ede31c9dc7c7b75b2733837e55fac8005276a7c4c715a99928325ef

nfs-common: NFS support files common to client and server

 Use this package on any machine that uses NFS, either as client or
 server. Programs included: lockd, statd, showmount, nfsstat, gssd,
 idmapd and mount.nfs.

nfs-common-dbgsym: debug symbols for nfs-common
nfs-kernel-server: support for NFS kernel server

 The NFS kernel server is currently the recommended NFS server for use
 with Linux, featuring features such as NFSv3 and NFSv4, Kerberos
 support via GSS, and much more. It is also significantly faster and
 usually more reliable than the user-space NFS servers (from the
 unfs3 and nfs-user-server packages). However, it is more difficult to
 debug than the user-space servers, and has a slightly different
 feature set.
 This package contains the user-space support needed to use the
 NFS kernel server. Most administrators wishing to set up an NFS server
 would want to install this package.

nfs-kernel-server-dbgsym: debug symbols for nfs-kernel-server