{
  "threat_severity" : "Moderate",
  "public_date" : "2010-07-22T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: dns_resolver upcall security issue",
    "id" : "612166",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=612166"
  },
  "cvss" : {
    "cvss_base_score" : "4.4",
    "cvss_scoring_vector" : "AV:L/AC:M/Au:N/C:P/I:P/A:P",
    "status" : "verified"
  },
  "details" : [ "The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCALL is enabled, relies on a user's keyring for the dns_resolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform arbitrary CIFS mounts via vectors involving an add_key call, related to a \"cache stuffing\" issue and MS-DFS referrals." ],
  "statement" : "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, and Red Hat Enterprise MRG as they did not include support for the upcall mechanism for the Common Internet File System (CIFS). This issue was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2010-0723.html.",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2010-08-10T00:00:00Z",
    "advisory" : "RHSA-2010:0610",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "kernel-0:2.6.18-194.11.1.el5"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2010-2524\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-2524" ],
  "name" : "CVE-2010-2524",
  "csaw" : false
}