2017-10-20 15:46:00 |
Thomas Imbert |
bug |
|
|
added bug |
2017-10-20 15:46:00 |
Thomas Imbert |
attachment added |
|
Vulnerability report https://bugs.launchpad.net/bugs/1725348/+attachment/4979227/+files/systemd_mitigation_denywriteexec_bypass.pdf |
|
2017-11-09 15:04:32 |
Marc Deslauriers |
bug |
|
|
added subscriber Martin Pitt |
2017-11-09 15:24:37 |
Marc Deslauriers |
bug |
|
|
added subscriber Dimitri John Ledkov |
2017-11-09 15:54:39 |
Marc Deslauriers |
bug |
|
|
added subscriber zbyszek |
2017-11-10 09:59:37 |
Zbigniew Jędrzejewski-Szmek |
attachment added |
|
0001-shared-seccomp-disallow-pkey_mprotect-the-same-as-mp.patch https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1725348/+attachment/5006870/+files/0001-shared-seccomp-disallow-pkey_mprotect-the-same-as-mp.patch |
|
2017-11-10 14:17:40 |
Zbigniew Jędrzejewski-Szmek |
bug |
|
|
added subscriber tixxDZ |
2017-11-13 12:06:30 |
Marc Deslauriers |
information type |
Private Security |
Public Security |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Bionic |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
bug task added |
|
systemd (Ubuntu Bionic) |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Zesty |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
bug task added |
|
systemd (Ubuntu Zesty) |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Xenial |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
bug task added |
|
systemd (Ubuntu Xenial) |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Artful |
|
2017-11-13 12:14:19 |
Dimitri John Ledkov |
bug task added |
|
systemd (Ubuntu Artful) |
|
2017-11-13 12:24:18 |
Ubuntu Foundations Team Bug Bot |
tags |
|
patch |
|
2017-11-13 12:24:26 |
Ubuntu Foundations Team Bug Bot |
bug |
|
|
added subscriber Ubuntu Review Team |
2017-11-21 09:21:08 |
Dimitri John Ledkov |
systemd (Ubuntu Bionic): status |
New |
Fix Committed |
|
2017-11-29 19:09:40 |
Launchpad Janitor |
systemd (Ubuntu Bionic): status |
Fix Committed |
Fix Released |
|
2017-11-29 19:09:40 |
Launchpad Janitor |
cve linked |
|
2017-15908 |
|
2018-02-20 15:42:39 |
Dimitri John Ledkov |
systemd (Ubuntu Zesty): status |
New |
Won't Fix |
|
2018-02-20 15:44:56 |
Dimitri John Ledkov |
systemd (Ubuntu Xenial): status |
New |
Invalid |
|
2018-02-20 15:44:59 |
Dimitri John Ledkov |
systemd (Ubuntu Artful): status |
New |
In Progress |
|
2018-02-20 16:04:24 |
Dimitri John Ledkov |
description |
Hello,
We would like to report to you a vulnerability about systemd which allows to bypass the MemoryDenyWriteExecution policy on Linux 4.9+.
The vulnerability is described in the attached PDF file.
Sincerely,
Thomas IMBERT |
[Impact]
* MemoryDenyWritePolicy can be bypassed by using a slightly different syscall.
[Test Case]
* Check that MemoryDenyWritePolicy, blocks pkey_mprotect as well as mprotect.
[Regression Potential]
* Upstream fix cherrypick, security vulnerability.
[Other Info]
* Original report
Hello,
We would like to report to you a vulnerability about systemd which allows to bypass the MemoryDenyWriteExecution policy on Linux 4.9+.
The vulnerability is described in the attached PDF file.
Sincerely,
Thomas IMBERT |
|
2018-02-22 18:36:29 |
Brian Murray |
systemd (Ubuntu Artful): status |
In Progress |
Fix Committed |
|
2018-02-22 18:36:31 |
Brian Murray |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2018-02-22 18:36:33 |
Brian Murray |
bug |
|
|
added subscriber SRU Verification |
2018-02-22 18:36:38 |
Brian Murray |
tags |
patch |
patch verification-needed verification-needed-artful |
|
2018-03-20 11:54:16 |
Dimitri John Ledkov |
tags |
patch verification-needed verification-needed-artful |
patch verification-done verification-done-artful |
|
2018-03-21 11:42:35 |
Launchpad Janitor |
systemd (Ubuntu Artful): status |
Fix Committed |
Fix Released |
|
2018-03-21 11:43:00 |
Łukasz Zemczak |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|