It was found that nfsd is missing permissions check when setting ACL, which allows local users to gain access to any file by setting ACL. Introduced in v3.14-rc1 by following commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4ac7249ea5a0ceef9f8269f63f33cc873c3fac61 Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=999653786df6954a31044528ac3f7a5dadca08f4 Prerequisite for the fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=485e71e8fb6356c08c7fc6bcce4bf02c9a9a663f CVE request: http://seclists.org/oss-sec/2016/q2/602
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1350847]
kernel-4.5.7-202.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.
Statement: This issue does not affect any of Red Hat's shipping products.
kernel-4.6.4-301.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.