Vulnerability Database
296,733
Total vulnerabilities in the database
CVE-2020-24394
In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131. This occurs because the current umask is not considered.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | - | 5.7.8 |
| canonical / ubuntu_linux | 18.04 | 18.04.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |
| canonical / ubuntu_linux | 20.04 | 20.04.x |
| canonical / ubuntu_linux | 16.04 | 16.04.x |
| opensuse / leap | 15.1 | 15.1.x |
| oracle / sd-wan_edge | 8.2 | 8.2.x |
| starwindsoftware / starwind_virtual_san | 8-build12533 | 8-build12533.x |
| starwindsoftware / starwind_virtual_san | 8-build12658 | 8-build12658.x |
| starwindsoftware / starwind_virtual_san | 8-build12859 | 8-build12859.x |
| starwindsoftware / starwind_virtual_san | 8-build13170 | 8-build13170.x |
| starwindsoftware / starwind_virtual_san | 8-build13586 | 8-build13586.x |
| starwindsoftware / starwind_virtual_san | 8-build13861 | 8-build13861.x |
- http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00007.html
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962254
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.7.8
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=22cf8419f1319ff87ec759d0ebdff4cbafaee832
- https://security.netapp.com/advisory/ntap-20200904-0003/
- https://usn.ubuntu.com/4465-1/
- https://usn.ubuntu.com/4483-1/
- https://usn.ubuntu.com/4485-1/
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.starwindsoftware.com/security/sw-20210325-0004/
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime