Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The gfs2_lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfs_lock function in the Linux kernel on Red Hat Enterprise Linux (RHEL) 5 and 6, does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service (BUG and system crash) by locking a file on a (1) GFS or (2) GFS2 filesystem, and then changing this file's permissions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel gfs_lock函数本地拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux Kernel的gfs2_lock和gfs_lock函数没有对setgid未设置group-execute权限文件的POSIX锁定进行正确的删除,本地用户可以通过在GFS或GFS2文件系统上锁定文件,然后再更改该文件的权限,导致系统崩溃。
CVSS Information
N/A
Vulnerability Type
N/A