Bug 16805 - criu new security issues CVE-2015-5228 and CVE-2015-5231
Summary: criu new security issues CVE-2015-5228 and CVE-2015-5231
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: i586 Linux
Priority: Normal major
Target Milestone: ---
Assignee: Olivier Blin
QA Contact: Sec team
URL: http://lwn.net/Vulnerabilities/658070/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-09-22 21:29 CEST by David Walser
Modified: 2016-01-16 12:59 CET (History)
0 users

See Also:
Source RPM: criu-1.6-1.mga6.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2015-09-22 21:29:17 CEST 
OpenSuSE has issued an advisory today (September 22):
http://lists.opensuse.org/opensuse-updates/2015-09/msg00030.html

It looks like they didn't really "fix" it, but instead disabled the criu service so that the vulnerability isn't in play out of the box:
https://bugzilla.suse.com/show_bug.cgi?id=943105

The criu service also isn't enabled by default in our package.  If any real fixes are developed in the future, it would be good to incorporate those.

Reproducible: 

Steps to Reproduce:
Comment 1 Olivier Blin 2015-11-02 01:27:07 CET 
Ok, I am updating to 1.7.2, but it does not seem to contain any fix for these issues.
Comment 2 David Walser 2016-01-03 00:52:30 CET 
Version 1.8 fixes this by completely removing the service:
http://pkgs.fedoraproject.org/cgit/criu.git/commit/?id=509f4cdc67e11f4d8e100d06c131e4cfbb6ba6b4
Comment 3 Olivier Blin 2016-01-16 12:59:16 CET 
Fixed in 1.8-1, thanks!

Status: NEW => RESOLVED
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.