FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Network ACL mishandling in mountd(8)

Affected packages
7.3 <= FreeBSD < 7.3_5
7.4 <= FreeBSD < 7.4_1
8.1 <= FreeBSD < 8.1_3
8.2 <= FreeBSD < 8.2_1

Details

VuXML ID 87261557-a450-11e2-9898-001060e06fd4
Discovery 2011-04-20
Entry 2012-01-29

Problem Description:

While parsing the exports(5) table, a network mask in the form of "-network=netname/prefixlength" results in an incorrect network mask being computed if the prefix length is not a multiple of 8.

For example, specifying the ACL for an export as "-network 192.0.2.0/23" would result in a netmask of 255.255.127.0 being used instead of the correct netmask of 255.255.254.0.

[source]

References

CVE Name CVE-2011-1739
FreeBSD Advisory SA-11:01.mountd

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.