CVE Database


Impact: Important
Public: 2007-06-08
Bugzilla: 275881: CVE-2007-3740 CIFS should honor umask


The MITRE CVE dictionary describes this issue as:

The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension support is enabled, does not honor the umask of a process, which allows local users to gain privileges.

Find out more about CVE-2007-3740 from the MITRE CVE dictionary and NIST NVD.


This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 2.1 or 3.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 4 (kernel) RHSA-2007:0939 November 01, 2007
Red Hat Enterprise Linux version 5 (kernel) RHSA-2007:0705 September 13, 2007

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.