Red Hat Customer Portal

Skip to main content

CVE-2007-3740

Impact:
Important
Public Date:
2007-06-08
Bugzilla:
275881: CVE-2007-3740 CIFS should honor umask

The MITRE CVE dictionary describes this issue as:

The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension support is enabled, does not honor the umask of a process, which allows local users to gain privileges.

Find out more about CVE-2007-3740 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 2.1 or 3.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (kernel) RHSA-2007:0939 2007-11-01
Red Hat Enterprise Linux 5 (kernel) RHSA-2007:0705 2007-09-13