CVE-2020-24717 : Insecure Permissions
Versions Affected : TrueNAS 12.0-BETA1 and 12.0-BETA2
Description
OpenZFS before 2.0.0-rc1, when used on FreeBSD, misinterprets group permissions as user permissions, as demonstrated by mode 0770 being equivalent to mode 0777
Workaround
No workaround is available.
Mitigation
- Upgrade to 12.0-BETA2.1 or later