Red Hat Security Advisory: Potential security problem in Red Hat 5.2 nfs-server | Linux Today
Security
SHARE
Facebook X Pinterest WhatsApp

Red Hat Security Advisory: Potential security problem in Red Hat 5.2 nfs-server

Written By
Web Webster
Web Webster
Jun 25, 1999

A change to 32 bit uid_t’s within glibc 2.0.x has opened a
potential hole in root-squashing.

---------------------------------------------------------------------
                   Red Hat, Inc. Security Advisory

Synopsis:               Potential security problem in Red Hat 5.2 nfs-server.
Advisory ID:            RHSA-1999:016-01
Issue date:             1999-06-24
Keywords:               nfs-server root-squashing security
---------------------------------------------------------------------

1. Topic: 

A potential security problem has been fixed in the nfs-server package.

2. Bug IDs fixed: 

3. Relevant releases/architectures: 

Red Hat Linux 5.2, all architectures

4. Obsoleted by:

5. Conflicts with:

6. RPMs required:

Intel: ftp://updates.redhat.com/5.2/i386

        nfs-server-2.2beta44.i386.rpm
        nfs-server-clients2.2beta44.i386.rpm

Alpha: ftp://updates.redhat.com/5.2/alpha

        nfs-server-2.2beta44.alpha.rpm
        nfs-server-clients-2.2beta44.alpha.rpm

Sparc: ftp://updates.redhat.com/5.2/sparc

        nfs-server-2.2beta44.sparc.rpm
        nfs-server-clients-2.2beta44.sparc.rpm

7. Problem description:

A change to 32 bit uid_t's within glibc 2.0.x has opened a potential
hole in root-squashing.

8. Solution:

9. Verification:

MD5 sum                           Package Name
--------------------------------------------------------------------------
98bd10854eb9da9ee48d2217055a6979  SRPMS/nfs-server-2.2beta44-1.src.rpm
28da963f934cd376f8cfd0ce7c56747c  alpha/nfs-server-2.2beta44-1.alpha.rpm
894c145fa449c7444b155304a1c5c29e  alpha/nfs-server-clients-2.2beta44-1.alpha.rpm
0780a208a3053c0e127bfee37eb255e3  i386/nfs-server-2.2beta44-1.i386.rpm
823cae1b9bf28640ff933d1783d581c4  i386/nfs-server-clients-2.2beta44-1.i386.rpm
e2578175851a9c50975d289ae4baebfd  sparc/nfs-server-2.2beta44-1.sparc.rpm
e66a63a62f6988ad6885f7a1acb746a8  sparc/nfs-server-clients-2.2beta44-1.sparc.rp

These packages are also PGP signed by Red Hat Inc. for security.  Our
key is available at:

http://www.redhat.com/corp/contact.html

10. References:



-- 
         To unsubscribe: mail redhat-watch-list-request@redhat.com with 
                       "unsubscribe" as the Subject.
Web Webster

Web Webster

Web Webster has more than 20 years of writing and editorial experience in the tech sector. He’s written and edited news, demand generation, user-focused, and thought leadership content for business software solutions, consumer tech, and Linux Today, he edits and writes for a portfolio of tech industry news and analysis websites including webopedia.com, and DatabaseJournal.com.

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

facebook
linkedin
x

Company

Contact us

Categories

News IT Management Infrastructure Developer Security High Performance Storage Blog

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information