Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list] 
Date: Mon, 05 Mar 2012 18:08:46 +0100
From: Stefan Cornelius <scorneli@...hat.com>
To: oss-security@...ts.openwall.com
Subject: CVE-2012-1106 assignment notification -- abrt: Setuid process core
 dump archived with unsafe GID permissions

Hi,

A sensitive information disclosure flaw was found in the way abrt, the
automatic bug detection and reporting tool, performed archiving of certain core
dump files. When the abrt C handler plug-in and core dumps for setuid and
setgid processes were enabled (via fs.suid_dumpable=2), an unprivileged local
user could use this flaw to obtain access to core dump files of setuid
processes, which terminated with crash and were run by the same unprivileged
user, leading to disclosure of sensitive information due to weak GID
permissions, those core dump files were created with.

We have assigned CVE-2012-1106 to this issue.

Upstream patch:
https://fedorahosted.org/abrt/changeset/23d6997d7886abe118c28254f7f73f0b19b2d4e0

Red Hat bug:
https://bugzilla.redhat.com/show_bug.cgi?id=785163

Thanks and kind regards,

-- 
Stefan Cornelius / Red Hat Security Response Team

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.