CVE-2009-4411

Name of the Vulnerable Software and Affected Versions XFS acl version 2.2.47

Description The setfacl and getfacl commands in XFS acl have an issue where they follow symbolic links even when the --physical or -L option is specified, when running in recursive mode. This might allow local users to modify the ACL for arbitrary files or directories via a symlink attack.

Recommendations For XFS acl version 2.2.47, as a temporary workaround, consider avoiding the use of the -R option with setfacl and getfacl commands until a patch is available. Restrict access to the setfacl and getfacl commands to minimize the risk of exploitation. Avoid using symbolic links in recursive operations with these commands until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.