Hardcoded path in /tmp written to by root
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ubuntu-advantage-tools (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Jammy |
Fix Released
|
Undecided
|
Unassigned | ||
Lunar |
Fix Released
|
Undecided
|
Unassigned | ||
Mantic |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[ Impact ]
Several race conditions were found in the u-a-t code, some where a file was being written in a hardcoded path in /tmp. This could leave way for attackers to insert malicious code in the client.
[ Test Plan ]
Functionality-wise, writing files is tested in the unit and integrations tests for ubuntu-
As for this specific bug, one can verify that the /tmp path does not exist anymore, and check the change in the code to see how the race condition was addressed.
[ Where problems could occur ]
The race conditions were addressed with try-except blocks in python, so it is low risk as any exploit would be against python itself. The other problematic parts of the code is removed/moved and functionality is covered by tests, so no problem there.
The risk we considered is that other flaws may be present and we may have not catched those as part of the discussions here. To mitigate that, we keep our tests up-to-date and try to improve code quality in each and every PR.
[ Original Description ]
I'm basing this report on src:ubuntu-
In uaclient/
This code is going away in an upcoming update to this package. I noticed it while reviewing this code being removed. But depending on its actual severity it might be worth a USN, so I'm flagging it here.
description: | updated |
Seth Arnold (seth-arnold) wrote : | #1 |
Seth Arnold (seth-arnold) wrote : | #2 |
I think there's multiple races here:
livepatch_
LivepatchSu
UAFile(
),
file_
)
...
class UAFile:
...
def write(self, content: str):
file_mode = (
if self.is_private
else defaults.
)
if not os.path.
if os.path.
Setting the permissions after it is created leaves open a small window for another process to race between the mkdir() and chmod() call. Setting the permissions correctly in the mkdir() call would mitigate this problem.
def write_file(
"""Write content to the provided filename encoding it if necessary.
@param filename: The full path of the file to write.
@param content: The content to write to the file.
@param mode: The filesystem mode to set on the file.
"""
tmpf = None
try:
tmpf = tempfile.
)
)
except Exception as e:
if tmpf is not None:
raise e
There's another race here between an open() hidden in the NamedTemporaryF
If the directory is also group- or world- writable without being sticky, another process could also swap in a new file for the chmod() and rename() operations.
I can't immediately think of a path to use these for exploitation, but maybe I'm just not inventive enough.
Thanks
Robie Basak (racb) wrote : Re: [Bug 2024204] Re: Hardcoded path in /tmp written to by root | #3 |
On Sat, Jun 17, 2023 at 12:51:59AM -0000, Seth Arnold wrote:
> Is this a cause for concern?
>
> tools/ua-
I got the impression that this is used in developer tooling and maybe CI
only, and doesn't end up in the built deb and thus doesn't end up in
production use of this package.
On Sat, Jun 17, 2023 at 01:10:56AM -0000, Seth Arnold wrote:
> I think there's multiple races here:
>
> livepatch_
> LivepatchSuppor
> UAFile(
> "livepatch-
> directory=
> private=False,
> ),
> file_format=
> )
>
> ...
>
> class UAFile:
> ...
> def write(self, content: str):
> file_mode = (
> defaults.
> if self.is_private
> else defaults.
> )
> if not os.path.
> os.makedirs(
> if os.path.
> os.chmod(
> system.
>
>
> Setting the permissions after it is created leaves open a small window for another process to race between the mkdir() and chmod() call. Setting the permissions correctly in the mkdir() call would mitigate this problem.
It is a race, but if we only put a sensitive file in there after the
chmod, then I think it's safe? The only thing an attacker would be able
to do is view an empty directory (which is useless). Am I missing
something?
> def write_file(
> """Write content to the provided filename encoding it if necessary.
>
> @param filename: The full path of the file to write.
> @param content: The content to write to the file.
> @param mode: The filesystem mode to set on the file.
> """
> tmpf = None
> try:
> os.makedirs(
> tmpf = tempfile.
> mode="wb", delete=False, dir=os.
> )
> logging.debug(
> "Writing file %s atomically via tempfile %s", filename, tmpf.name
> )
> tmpf.write(
> tmpf.flush()
> tmpf.close()
> os.chmod(tmpf.name, mode)
> os.rename(
> except Exception as e:
> if tmpf is not None:
> os.unlink(
> raise e
>
> There's another race here between an open() hidden in the
> NamedTemporaryF
> race is a lot longer than the previous one. If the permissions are being
> reduced, there's a window where another process could open the file and
> hold on to a file descriptor. This wouldn't be revoked when the
> permissions are changed. This could be mitigated by setting the
> permissions when creating the file.
I don't think the permissions are being reduced. NamedTemporaryFile says
it does what mkstemp would do, and that says "The file is readable and
writable o...
Seth Arnold (seth-arnold) wrote : | #4 |
Thanks Robie; I'm feeling unsure enough of my thoughts to not want to change the visibility on this bug right away. Perhaps Tuesday or Wednesday, open this bug?
Thanks
Grant Orndorff (orndorffgrant) wrote : | #5 |
Just confirming that tools/ua-
Christian Ehrhardt (paelzer) wrote : | #6 |
So the usage of tools/ua-
Thanks @Grant
Furthermore the initial bug was filed to have a look at a behavior that has been removed in release 28.1.
Mostly as a "we should look at these things" which Seth (thanks) has done.
I'm unsure about the right state of this now :-/
@Seth
Is there any vector of attack from your analysis left open that we should fix or discuss about?
Or did we actually manage to get them all sorted out and can close this as "was worth the discussion, but there is nothing left to do"?
Seth Arnold (seth-arnold) wrote : | #7 |
I downloaded
ubuntu-
and several of these races are still present:
uaclient/
def write(self, content: str):
file_mode = (
if self.is_private
else defaults.
)
if not os.path.
if os.path.
uaclient/system.py
def write_file(
filename: str, content: str, mode: Optional[int] = None
) -> None:
[...]
try:
tmpf = tempfile.
)
LOG.debug(
)
if is_file_present:
I think Robie's discovery was fixed with https:/
Thanks
Christian Ehrhardt (paelzer) wrote : | #8 |
Thanks Seth for your recheck about what is left and should be addressed in the next version.
We have:
1. in uaclient/
Problem: race of makedirs -> chmod
Solution: setting the permissions right away in the mkdirs() call
2. in uaclient/
Problem: race of NamedTemporaryFile -> chmod
You said "This could be mitigated by setting the permissions when creating the file."
But I wondered why there is no way to set an initial mode to NamedTemporaryFile to do so.
Later I found that this is intentional and considered a security feature.
To do that NamedTemporaryFile hardcodes this to the minimal permission of 0600 here
https:/
Sadly, I didn't find a more official source than https:/
Due to that it is private until we open it up with chmod.
And we might open it up, but we are never lowering the barrier and hence no one could benefit from the race window between the hidden open and chmod in this case.
Therefore I think #2 is not an issue and can stay as-is.
---
So overall the remaining fix could be like this I guess?
diff --git a/uaclient/
index 821493f5..475a2d7a 100644
--- a/uaclient/
+++ b/uaclient/
@@ -42,9 +42,10 @@ class UAFile:
else defaults.
)
if not os.path.
- os.makedirs(
if os.path.
- os.chmod(
+ os.makedirs(
+ else:
+ os.makedirs(
def read(self) -> Optional[str]:
Pro squad, WDYT?
Grant Orndorff (orndorffgrant) wrote : | #9 |
Yes that is a clear improvement that we can make as a result of this discussion. Note that according to https:/
To set the file permission bits of any newly created parent directories you can set the umask before invoking makedirs()
So we'll add that as well.
Seth Arnold (seth-arnold) wrote : | #10 |
On Wed, Aug 16, 2023 at 07:30:52AM -0000, Christian Ehrhardt wrote:
> Later I found that this is intentional and considered a security feature.
> To do that NamedTemporaryFile hardcodes this to the minimal permission of 0600 here
> https:/
Oh, excellent! Last time I looked at this, I didn't go beyond the official
documentation, which is indeed silent on the issue. I've seen way too many
interfaces that don't allow setting permissions and assumed it was more of
the same.
Thanks
information type: | Private Security → Public Security |
description: | updated |
Andreas Hasenack (ahasenack) wrote : Please test proposed package | #11 |
Hello Robie, or anyone else affected,
Accepted ubuntu-
Please help us by testing this new package. See https:/
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-
Further information regarding the verification process can be found at https:/
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.
Changed in ubuntu-advantage-tools (Ubuntu Mantic): | |
status: | New → Fix Committed |
tags: | added: verification-needed verification-needed-mantic |
Changed in ubuntu-advantage-tools (Ubuntu Lunar): | |
status: | New → Fix Committed |
tags: | added: verification-needed-lunar |
Andreas Hasenack (ahasenack) wrote : | #12 |
Hello Robie, or anyone else affected,
Accepted ubuntu-
Please help us by testing this new package. See https:/
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-
Further information regarding the verification process can be found at https:/
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.
Changed in ubuntu-advantage-tools (Ubuntu Jammy): | |
status: | New → Fix Committed |
tags: | added: verification-needed-jammy |
Andreas Hasenack (ahasenack) wrote : | #13 |
Hello Robie, or anyone else affected,
Accepted ubuntu-
Please help us by testing this new package. See https:/
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-
Further information regarding the verification process can be found at https:/
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.
Changed in ubuntu-advantage-tools (Ubuntu Focal): | |
status: | New → Fix Committed |
tags: | added: verification-needed-focal |
Andreas Hasenack (ahasenack) wrote : | #14 |
Hello Robie, or anyone else affected,
Accepted ubuntu-
Please help us by testing this new package. See https:/
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-
Further information regarding the verification process can be found at https:/
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.
Changed in ubuntu-advantage-tools (Ubuntu Bionic): | |
status: | New → Fix Committed |
tags: | added: verification-needed-bionic |
Andreas Hasenack (ahasenack) wrote : | #15 |
Hello Robie, or anyone else affected,
Accepted ubuntu-
Please help us by testing this new package. See https:/
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-
Further information regarding the verification process can be found at https:/
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.
Changed in ubuntu-advantage-tools (Ubuntu Xenial): | |
status: | New → Fix Committed |
tags: | added: verification-needed-xenial |
Andreas Hasenack (ahasenack) wrote : | #16 |
Hello Robie, or anyone else affected,
Accepted ubuntu-
Please help us by testing this new package. See https:/
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-
Further information regarding the verification process can be found at https:/
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.
Launchpad Janitor (janitor) wrote : | #17 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 08:35:37 -0300
Changed in ubuntu-advantage-tools (Ubuntu): | |
status: | New → Fix Released |
Renan Rodrigo (renanrodrigo) wrote : | #18 |
As https:/
I am not sure on which exact steps I should follow to verify this bug is fixed.
Andreas Hasenack (ahasenack) wrote : | #19 |
Being a race, it's harder to verify. We could check that the chmod() call doesn't happen anymore (now it's os.makedirs() directly with the permission set), but we can see that in the code itself. This, plus the test suite in #2038461, is enough to mark this as verification done.
tags: |
added: verification-done-jammy verification-done-lunar verification-done-mantic verification-done-xenial removed: verification-needed-jammy verification-needed-lunar verification-needed-mantic verification-needed-xenial |
tags: |
added: verification-done-bionic verification-done-focal removed: verification-needed-bionic verification-needed-focal |
Launchpad Janitor (janitor) wrote : | #20 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* Backport new upstream release to mantic (LP: #2038461)
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 16:23:34 +0200
Changed in ubuntu-advantage-tools (Ubuntu Mantic): | |
status: | Fix Committed → Fix Released |
Andreas Hasenack (ahasenack) wrote : Update Released | #21 |
The verification of the Stable Release Update for ubuntu-
Launchpad Janitor (janitor) wrote : | #22 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* Backport new upstream release to lunar (LP: #2038461)
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 16:23:44 +0200
Changed in ubuntu-advantage-tools (Ubuntu Lunar): | |
status: | Fix Committed → Fix Released |
Launchpad Janitor (janitor) wrote : | #23 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* Backport new upstream release to jammy (LP: #2038461)
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 16:23:42 +0200
Changed in ubuntu-advantage-tools (Ubuntu Jammy): | |
status: | Fix Committed → Fix Released |
Launchpad Janitor (janitor) wrote : | #24 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* Backport new upstream release to focal (LP: #2038461)
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 16:23:40 +0200
Changed in ubuntu-advantage-tools (Ubuntu Focal): | |
status: | Fix Committed → Fix Released |
Launchpad Janitor (janitor) wrote : | #25 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* Backport new upstream release to bionic (LP: #2038461)
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 16:23:37 +0200
Changed in ubuntu-advantage-tools (Ubuntu Bionic): | |
status: | Fix Committed → Fix Released |
Ubuntu SRU Bot (ubuntu-sru-bot) wrote : Autopkgtest regression report (ubuntu-advantage-tools/30~16.04) | #26 |
All autopkgtests for the newly accepted ubuntu-
The following regressions have been reported in tests triggered by the package:
ubuntu-
Please visit the excuses page listed below and investigate the failures, proceeding afterwards as per the StableReleaseUp
[1] https:/
Thank you!
Andreas Hasenack (ahasenack) wrote : | #27 |
The DEP8 tests are green now.
Launchpad Janitor (janitor) wrote : | #28 |
This bug was fixed in the package ubuntu-
---------------
ubuntu-
* Backport new upstream release to xenial (LP: #2038461)
ubuntu-
* d/control:
- add python3-apt as a build dependency
- add the new ubuntu-
- recommend installing ubuntu-
* d/po/*:
- Makefile to build localization files to debian/
- update POTFILES.in to cover all translatable messages
- remove old unused pot file
- add new complete pot file for "ubuntu-pro" domain
- add first Brazilian Portuguese translations
* d/rules:
- add step to build the translations
* d/tests/control:
- mark autopkgtests as superficial (GH: #2609)
* d/ubuntu-
- remove /etc/ubuntu-
* d/ubuntu-
- add install file for the new binary package
* New upstream release 30 (LP: #2038461)
- api:
+ add new backwards compatible plan steps to the v1 fix plan endpoints
+ improve information returned from the fix plan endpoints
+ new endpoint: u.pro.security.
+ new endpoint: u.pro.security.
- apt: improve performance and consistency by refactoring the code to use
the apt_pkg module
- auto-attach: add newline to the MOTD message to separate it from other
MOTD messages
- contract: send information about variants to the contracts server
- enable: update only service specific apt sources when enabling a service
(GH: #1311) (GH: #1482)
- esm: create static files to pin packages from esm-infra and esm-apps with
higher priority (GH: #2580)
- disable:
+ (experimental) add the --purge flag to the disable command, so users
can remove all service related packages when disabling a service
+ show extra warnings when kernels are involved in the purge operation
- files: Reduce race window when creating new files (LP: #2024204)
- fips: add support to Jammy to prepare for when it is available
- fips-preview:
+ add fips-preview as a new entitlement
- github: add issue templates (GH: #2646)
- internationaliz
+ add general internationaliz
+ add initial sentence set for Brazilian Portuguese
- logging:
+ add journald logging for the daemon and systemd timer
+ remove daemon and timer log files
+ standardize the logging calls through the codebase (GH: #2632)
- systemd: change ubuntu-
dropping the dependency on python3-systemd (LP: #2038417) (GH: #2692)
- tests:
+ add scenarios where cloud-init is present but disabled (LP: #1938208)
+ change 'permission' to 'priority' when checking apt priority in tests
(GH: #2719)
-- Renan Rodrigo <email address hidden> Tue, 07 Nov 2023 16:23:34 +0200
Changed in ubuntu-advantage-tools (Ubuntu Xenial): | |
status: | Fix Committed → Fix Released |
Is this a cause for concern?
tools/ua- dev-cloud- config. yaml
cloud-config advantage- tools development environment with cloud-init /github. com/canonical/ ubuntu- advantage- client. git /var/tmp/uac advantage- tools --assume-yes ubuntu- advantage- *deb
# Setup an ubuntu-
packages:
- git
- make
runcmd:
- git clone https:/
- cd /var/tmp/uac/
- make deps
- dpkg-buildpackage -us -uc
- apt-get remove ubuntu-
- dpkg -i /var/tmp/
Can the cloud-init runtime guarantee that this will *never* run on anything except the first boot of a pristine system? This would be a super-easy route to root escalation.