Project

General

Profile

Bug #6730

Bug #6728: Screen: root exploit 4.5.0

[3.5] Screen: root exploit 4.5.0 (CVE-2017-5618)

Added by Alicha CH over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
01/25/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

Commit f86a374 ("screen.c: adding permissions check for the logfile name", 2015-11-04)

The check opens the logfile with full root privileges. This allows us to
truncate any file or create a root-owned file with any contents in any
directory and can be easily exploited to full root access in several ways.

Affects:

screen 4.4.0 to and inclusive 4.5.0

References:

http://www.openwall.com/lists/oss-security/2017/01/24/10
http://savannah.gnu.org/bugs/?50142

Associated revisions

Revision 62ff75ac (diff)
Added by Natanael Copa over 2 years ago

main/screen: security upgrade to 4.5.1 (CVE-2017-5618)

fixes #6730

History

#1 Updated by Sergei Lukin over 2 years ago

At this moment (2017-01-26)
 fix-patch is not available
 CVE is not assigned for this issue
 4.5.1 release was promised which would fix the issue
https://lists.gnu.org/archive/html/screen-devel/2017-01/msg00029.html
https://lists.gnu.org/archive/html/screen-devel/2017-01/msg00030.html

#2 Updated by Natanael Copa over 2 years ago

  • Target version changed from 3.5.1 to 3.5.2

#3 Updated by Natanael Copa over 2 years ago

  • Subject changed from [3.5] Screen: root exploit 4.5.0 to [3.5] Screen: root exploit 4.5.0 (CVE-2017-5618)
  • Security IDs changed from - to CVE-2017-5618

#4 Updated by Natanael Copa over 2 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#5 Updated by Alicha CH over 2 years ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF