CVE-2012-5638

Name of the Vulnerable Software and Affected Versions SANLock (affected versions not specified)

Description The issue concerns the setup logging function in log.h, which sets world-writable permissions for the /var/log/sanlock.log file. This allows local users to overwrite the file content or bypass intended disk-quota restrictions via standard filesystem write operations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.