rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux | Conectiva | 4.0 | 4.0 |
Linux | Conectiva | 4.0es | 4.0es |
Linux | Conectiva | 4.1 | 4.1 |
Linux | Conectiva | 4.2 | 4.2 |
Linux | Conectiva | 5.0 | 5.0 |
Linux | Conectiva | 5.1 | 5.1 |