Tony Ernst from SGI has discovered a flaw in the way nfsidmap maps NFSv4 unknown
uids. If an unknown user ID is encountered on an NFSv4 mounted filesystem, the
files will default to being owned by root rather than nobody. This could
potentially be used to elevate a users privileges. This is fixed in nfsidmap
Created attachment 172372 [details]
Issue is public now, removing embargo.
This was addressed via:
Red Hat Enterprise Linux version 5 (RHSA-2007:09510