Bug 16805

Summary: criu new security issues CVE-2015-5228 and CVE-2015-5231
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Olivier Blin <mageia>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: major    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: http://lwn.net/Vulnerabilities/658070/
Whiteboard:
Source RPM: criu-1.6-1.mga6.src.rpm CVE:
Status comment:

Description David Walser 2015-09-22 21:29:17 CEST 
OpenSuSE has issued an advisory today (September 22):
http://lists.opensuse.org/opensuse-updates/2015-09/msg00030.html

It looks like they didn't really "fix" it, but instead disabled the criu service so that the vulnerability isn't in play out of the box:
https://bugzilla.suse.com/show_bug.cgi?id=943105

The criu service also isn't enabled by default in our package.  If any real fixes are developed in the future, it would be good to incorporate those.

Reproducible: 

Steps to Reproduce:
Comment 1 Olivier Blin 2015-11-02 01:27:07 CET 
Ok, I am updating to 1.7.2, but it does not seem to contain any fix for these issues.
Comment 2 David Walser 2016-01-03 00:52:30 CET 
Version 1.8 fixes this by completely removing the service:
http://pkgs.fedoraproject.org/cgit/criu.git/commit/?id=509f4cdc67e11f4d8e100d06c131e4cfbb6ba6b4
Comment 3 Olivier Blin 2016-01-16 12:59:16 CET 
Fixed in 1.8-1, thanks!

Status: NEW => RESOLVED
Resolution: (none) => FIXED