Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 385693 (CVE-2011-3588) - sys-apps/kexec-tools Multiple security flaws by management of kdump core files and ramdisk images (CVE-2011-{3588,3589,3590})
Summary: sys-apps/kexec-tools Multiple security flaws by management of kdump core file...
Status: RESOLVED INVALID
Alias: CVE-2011-3588
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard: B4 [upstream]
Keywords:
Depends on:
Blocks:
 
Reported: 2011-10-05 07:15 UTC by Michael Harrison
Modified: 2016-03-02 10:00 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Harrison 2011-10-05 07:15:17 UTC 
Multiple security flaws were found in the way kexec-tools performed management
of created kdump core files and ramdisk images:
* the default value of "StrictHostKeyChecking=no" has been used for kdump /
  mkdumprd openssh integration. A remote malicious kdump server could use
  this flaw to impersonate the intended, correct kdump server to obtain
  security sensitive information (kdump core files),
* mkdumprd utility copied content of certain directories into newly created
  initial ramdisk images, potentially leading to information leak,
* mkdumprd utility created the final initial ramdisk image with world-readable
  permissions, possibly leading to information leak.
Comment 1 Agostino Sarubbo gentoo-dev 2011-10-10 13:54:06 UTC 
Changed CVE per: http://www.openwall.com/lists/oss-security/2011/10/10/1
Comment 2 Justin Lecher (RETIRED) gentoo-dev 2013-03-27 08:42:52 UTC 
I am pretty sure this doesn't apply to us. We don't have any support for kdump through initscripts. Could someone please cross check that this is really only about the redhat/fedora init scripts of kdump?
Comment 3 Aaron Bauman (RETIRED) gentoo-dev 2016-03-02 10:00:55 UTC 
This only applies to redhat/fedora and kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209.  None of these are in Portage.  Per previous comment we do not even support the initscripts referenced in RHEL.