← back
CVE-2020-24717

CVE-2020-24717

EPSS 0.5%
OpenZFS before 2.0.0-rc1, when used on FreeBSD, misinterprets group permissions as user permissions, as demonstrated by mode 0770 being equivalent to mode 0777.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/openzfs/zfs/commit/716b53d0a14c72bda16c0872565dd1909757e73fhttps://github.com/openzfs/zfs/compare/zfs-0.8.4...zfs-2.0.0-rc1https://jira.ixsystems.com/browse/NAS-107270https://reviews.freebsd.org/D26107