PT-2003-1539 · Slackware · Slackware

Jem Berkes

Published

2003-05-22

Updated

2016-10-18

CVE-2003-0335

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Slackware version 9.0

Description: The issue arises from the rc.M script in Slackware, which calls quotacheck with the -M option. This causes the filesystem to be remounted, potentially resetting security-relevant mount flags such as nosuid, nodev, and noexec.

Recommendations: For Slackware version 9.0, consider modifying the rc.M script to avoid calling quotacheck with the -M option, or find an alternative method to preserve the security-relevant mount flags during the filesystem remount process.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0335

Affected Products

Slackware

PT-2003-1539 · Slackware · Slackware

CVE-2003-0335

Related Identifiers

Affected Products

References · 2