Launchpad.net

CVE 2007-1507

The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response to an AFS cache manager FetchStatus request, and setting setuid and root ownership for files in the cache.

Related bugs and status

CVE-2007-1507 (Candidate) is related to these bugs:

Bug #94787: Openafs has a security hole with enabled suid

Summary				In	Importance	Status
	94787	Openafs has a security hole with enabled suid		openafs (Ubuntu)	Undecided	Fix Released
	94787	Openafs has a security hole with enabled suid		openafs (Ubuntu Dapper)	Undecided	Fix Released

Bug #96931: UVF Exeption for OpenAFS 1.4.4 - please sync from debian

Summary				In	Importance	Status
	96931	UVF Exeption for OpenAFS 1.4.4 - please sync from debian		openafs (Ubuntu)	Wishlist	Fix Released

Bug #356861: OpenAFS Security Advisories 2009-001 and 2009-002

		In	Importance	Status
356861	OpenAFS Security Advisories 2009-001 and 2009-002	openafs (Ubuntu)	Undecided	Fix Released
356861	OpenAFS Security Advisories 2009-001 and 2009-002	openafs (Ubuntu Dapper)	Undecided	Fix Released
356861	OpenAFS Security Advisories 2009-001 and 2009-002	openafs (Ubuntu Hardy)	Undecided	Fix Released
356861	OpenAFS Security Advisories 2009-001 and 2009-002	openafs (Ubuntu Jaunty)	Undecided	Fix Released
356861	OpenAFS Security Advisories 2009-001 and 2009-002	openafs (Ubuntu Intrepid)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [OpenAFS-announce] 200...
MLIST: [OpenAFS-announce] 200...
MLIST: [OpenAFS-announce] 200...
DEBIAN: DSA-1271
BID: 23060
SECUNIA: 24582
SECUNIA: 24599
SECUNIA: 24607
SECTRACK: 1017807
GENTOO: GLSA-200704-03
SECUNIA: 24720
MANDRIVA: MDKSA-2007:066
VUPEN: ADV-2007-1033
XF: openafs-setuid-privile...