Project

General

Profile

Bug #6728

Screen: root exploit 4.5.0

Added by Alicha CH over 2 years ago. Updated about 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
-
Start date:
01/25/2017
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

Commit f86a374 ("screen.c: adding permissions check for the logfile name", 2015-11-04)

The check opens the logfile with full root privileges. This allows us to
truncate any file or create a root-owned file with any contents in any
directory and can be easily exploited to full root access in several ways.

Affects:

screen 4.4.0 to and inclusive 4.5.0

References:

http://www.openwall.com/lists/oss-security/2017/01/24/10
http://savannah.gnu.org/bugs/?50142


Subtasks

Bug #6729: [3.6] Screen: root exploit 4.5.0 ClosedNatanael Copa

Bug #6730: [3.5] Screen: root exploit 4.5.0 (CVE-2017-5618)ClosedNatanael Copa

History

#1 Updated by Alicha CH about 2 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from New to Closed

Also available in: Atom PDF