smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to
the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file
without first checking whether resource limits would interfere, which allows
local users to trigger corruption of the /etc/mtab file via a process with a
small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
@security: This affects <=net-fs/samba-3.5.8 . Currently we have 3.5.11 and above.
(In reply to comment #1)
> @security: This affects <=net-fs/samba-3.5.8 . Currently we have 3.5.11 and
Thanks, Victor. GLSA vote: yes (with the other Samba bugs)
This issue was resolved and addressed in
GLSA 201206-22 at http://security.gentoo.org/glsa/glsa-201206-22.xml
by GLSA coordinator Sean Amoss (ackle).