Ubuntu
openafs package

Openafs has a security hole with enabled suid

Bug #94787 reported by Stephan Wienczny on 2007-03-22

256

Affects		Status	Importance	Assigned to	Milestone
	openafs (Ubuntu)	Fix Released	Undecided	Unassigned
Declined for Edgy by Luca Falavigna
Declined for Feisty by Jamie Strandboge
	Dapper	Fix Released	Undecided	Unassigned

Bug Description

Binary package hint: openafs-client

Openafs has a privilege escalation security hole that permits an attacker to gain local root access.

A security adversory can be found upstream at http://openafs.org/security/OPENAFS-SA-2007-001.txt
A new openafs-release fixes this.

CVE References

2007-1507

Revision history for this message

Kees Cook (kees) wrote on 2007-03-22:

#1

Thanks for the report. I've linked to the CVE for this. If someone can prepare debdiffs and test them, I can get them published.

Changed in openafs:
status:	Unconfirmed → Confirmed

Revision history for this message

Björn Torkelsson (torkel) wrote on 2007-03-23:

#2

Debdiff for openafs Edit (1.1 KiB, text/plain)

Debdiff against the version in Dapper. The package built without any problem, however I have at the moment no way to test it. The fix is trivial though and should also apply to the versions in breezy and edgy.

Russ Allbery said he will try to package 1.4.4 for Debian Experimental this weekend. I really suggest that we try to get an UVF execption for that one for Feisty. 1.4.4 fixes a lot of problems in 1.4.2, and probably most important it works with 2.6.20. 1.4.2-4ubuntu1 has some of the upstream patches to make it work with 2.6.20, but I'm not sure that I found everything needed.

Revision history for this message

Björn Torkelsson (torkel) wrote on 2007-03-27:

#3

UVF Execption for feisty to get Openafs 1.4.4 (requires a sync from Debian Experimental) in filed as #94787.

Revision history for this message

Emilio Pozuelo Monfort (pochu) wrote on 2007-03-27:

#4

94787 is this bug ;) The UVFe is in Bug #96931

Revision history for this message

Björn Torkelsson (torkel) wrote on 2007-10-18:

#5

Feisty got 1.4.4 so it is safe. But what happend to dapper and edgy? Did somebody test the debdiff?

Revision history for this message

Achim Bohnet (allee) wrote on 2007-10-19:

#6

No. I'm using my dapper 1.4.4-x backports. Ditto for edgy but there are now all replace with feisty.
I trust upstream enough, to backports on dapper ... gutsy the new 1.4.* releases. Sorry, lame
excuse to not test it :(

Revision history for this message

Russ Allbery (rra-debian) wrote on 2009-02-12:

#7

Fixed since feisty

Changed in openafs:
status:	Confirmed → Fix Released

Jamie Strandboge (jdstrand) on 2009-02-19

Changed in openafs:
status:	New → Confirmed

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2009-04-20:

#8

This was released for dapper today.

Changed in openafs (Ubuntu Dapper):
status:	Confirmed → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Debdiff for openafs Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.