CVE-2009-3286

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6.18

Description The issue is related to the NFSv4 implementation in the Linux kernel, where it fails to properly clean up an inode when an O EXCL create fails. This can lead to files being created with insecure settings, such as setuid bits, potentially allowing local users to gain privileges. The problem is associated with the execution of the do open permission function, even when a create operation fails.

Recommendations For Linux kernel version 2.6.18, consider restricting access to the NFSv4 functionality until a proper fix is applied, and ensure that all file creations are thoroughly audited to prevent insecure settings.