Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 186428
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Pierre-Yves Rofes <py@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 186428 depends on: Show dependency tree
Bug 186428 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2007-07-24 07:12 0000 
A vulnerability has been reported in RSBAC, which can be exploited by malicious
people to bypass certain security restrictions.

The vulnerability is caused due to the incorrect use of the Linux Kernel Crypto
API within certain User Management modules (e.g. rsbac_auth, pam_sbac.so, and
pam_login). This can be exploited to bypass authentication by logging in with
any password.

The vulnerability is reported in versions 1.3.3 and 1.3.4 running a Linux
2.6.20 or later kernel.

Solution:
Update to version 1.3.5.

------- Comment #1 From Pierre-Yves Rofes 2007-07-24 07:13:45 0000 ------- 
setting status. Hardened, please advise.

------- Comment #2 From Guillaume Destuynder (RETIRED) 2007-07-24 09:25:38 0000 ------- 
patch has been backported to 1.3.4 in rsbac-sources-2.6.21-r1 (~arch)

------- Comment #3 From Guillaume Destuynder (RETIRED) 2007-07-24 09:32:22 0000 ------- 
by the way, for the details:
affected users are the ones using SHA1 hashes, UM module enabled, setuid
allowed to that ID by the application used to login, and password
set/reset/changed on 2.6.20 kernels prior to rsbac-sources-2.6.20-r1

------- Comment #4 From Guillaume Destuynder (RETIRED) 2007-07-24 09:32:57 0000 ------- 
(In reply to comment #3)
> set/reset/changed on 2.6.20 kernels prior to rsbac-sources-2.6.20-r1
> 

2.6.21-r1, sorry. too early in the morning.

------- Comment #5 From Pierre-Yves Rofes 2007-07-31 08:21:30 0000 ------- 
closing this one without glsa since this is kernel stuff. feel free to reopen
if you disagree.
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug