Bug 27321 - packagekit new security issue CVE-2020-16121
Summary: packagekit new security issue CVE-2020-16121
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 7
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA7-64-OK
Keywords: advisory, validated_update
Depends on:
Blocks:
 
Reported: 2020-09-25 01:02 CEST by David Walser
Modified: 2020-11-13 22:22 CET (History)
3 users (show)

See Also:
Source RPM: packagekit-1.1.12-3.mga7.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2020-09-25 01:02:29 CEST 
Ubuntu has issued an advisory today (September 24):
https://ubuntu.com/security/notices/USN-4538-1

The other issue they fixed is Debian-specific.

Mageia 7 is also affected.
David Walser 2020-09-25 01:02:36 CEST

Whiteboard: (none) => MGA7TOO

Comment 1 Lewis Smith 2020-09-25 21:49:51 CEST 
Can we assign this to you, Neal, as having done the main recent commits on this?
(Re-assign it to pkg-bugs if this does not suit you).

Assignee: bugsquad => ngompa13

Comment 2 Mike Rambo 2020-11-13 15:15:49 CET 
Patched package uploaded for cauldron and Mageia 7.

Advisory:
========================

Updated packagekit package fixes security vulnerability:

It was discovered that packagekit was subject to a vulnerability where the InstallFiles, GetFilesLocal and GetDetailsLocal methods of the DBus interface to PackageKit accesses given files before checking for authorization. This allows non-privileged users to learn the MIME type of any file on the system (CVE-2020-16121).


References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16121
https://ubuntu.com/security/notices/USN-4538-1
========================

Updated packages in core/updates_testing:
========================
lib64packagekit-devel-1.1.12-3.1.mga7.x86_64.rpm
lib64packagekit-glib18-1.1.12-3.1.mga7.x86_64.rpm
lib64packagekitglib-gir1.0-1.1.12-3.1.mga7.x86_64.rpm
packagekit-1.1.12-3.1.mga7.x86_64.rpm
packagekit-command-not-found-1.1.12-3.1.mga7.x86_64.rpm
packagekit-cron-1.1.12-3.1.mga7.x86_64.rpm
packagekit-gstreamer-plugin-1.1.12-3.1.mga7.x86_64.rpm
packagekit-gtk3-module-1.1.12-3.1.mga7.x86_64.rpm
packagekit-gtk-module-1.1.12-3.1.mga7.x86_64.rpm

from packagekit-1.1.12-3.1.mga7.src.rpm

Assignee: ngompa13 => qa-bugs
Version: Cauldron => 7
CC: (none) => mrambo
Whiteboard: MGA7TOO => (none)

Comment 3 Aurelien Oudelet 2020-11-13 18:46:14 CET 
M7 x86_64 Plasma
PackageKit update installs:
lib64packagekit-glib18         1.1.12       3.1.mga7      x86_64  
lib64packagekitglib-gir1.0     1.1.12       3.1.mga7      x86_64
packagekit                     1.1.12       3.1.mga7      x86_64  
packagekit-gtk-module          1.1.12       3.1.mga7      x86_64

This is OK.
PackageKit is a package manager available through pkcon command.
$ pkcon backend-details
Nom:            dnf
Description:    Dnf
Auteur: Richard Hughes <richard@hughsie.com>

$ pkcon get-updates
Obtention des mises à jour   [=========================]         
Chargement du cache           [=========================]         
Terminé                      [=========================]         
Il n'y a pas de mise à jour disponible pour le moment.

$ pkcon repo-list
Obtention des dépôts        [=========================]         
Terminé                      [=========================]         
 Activé    mageia-x86_64-nonfree     Mageia 7 - x86_64 - Nonfree
 Activé    updates-x86_64-nonfree    Mageia 7 - x86_64 - Nonfree - Updates
 Désactivé updates_testing-x86_64-nonfree Mageia 7 - x86_64 - Nonfree - Test Updates
 Désactivé backports-x86_64-nonfree  Mageia 7 - x86_64 - Nonfree - Backports
 Désactivé backports_testing-x86_64-nonfree Mageia 7 - x86_64 - Nonfree - Test Backports
 Désactivé mageia-x86_64-nonfree-debuginfo Mageia 7 - x86_64 - Nonfree - Debug
 Désactivé updates-x86_64-nonfree-debuginfo Mageia 7 - x86_64 - Nonfree - Updates - Debug
 Désactivé updates_testing-x86_64-nonfree-debuginfo Mageia 7 - x86_64 - Nonfree - Test Updates - Debug
 Désactivé backports-x86_64-nonfree-debuginfo Mageia 7 - x86_64 - Nonfree - Backports - Debug
 Désactivé backports_testing-x86_64-nonfree-debuginfo Mageia 7 - x86_64 - Nonfree - Test Backports - Debug
 Désactivé mageia-i586               Mageia 7 - i586
 Désactivé updates-i586              Mageia 7 - i586 - Updates
 Désactivé updates_testing-i586      Mageia 7 - i586 - Test Updates
 Désactivé backports-i586            Mageia 7 - i586 - Backports
 Désactivé backports_testing-i586    Mageia 7 - i586 - Test Backports
 Désactivé mageia-i586-debuginfo     Mageia 7 - i586 - Debug
 Désactivé updates-i586-debuginfo    Mageia 7 - i586 - Updates - Debug
 Désactivé updates_testing-i586-debuginfo Mageia 7 - i586 - Test Updates - Debug
 Désactivé backports-i586-debuginfo  Mageia 7 - i586 - Backports - Debug
 Désactivé backports_testing-i586-debuginfo Mageia 7 - i586 - Test Backports - Debug
 Désactivé mageia-x86_64-nonfree-source Mageia 7 - x86_64 - Nonfree - Source
 Désactivé updates-x86_64-nonfree-source Mageia 7 - x86_64 - Nonfree - Updates - Source
 Désactivé updates_testing-x86_64-nonfree-source Mageia 7 - x86_64 - Nonfree - Test Updates - Source
 Désactivé backports-x86_64-nonfree-source Mageia 7 - x86_64 - Nonfree - Backports - Source
 Désactivé backports_testing-x86_64-nonfree-source Mageia 7 - x86_64 - Nonfree - Test Backports - Source
 Désactivé mageia-x86_64-source      Mageia 7 - x86_64 - Source
 Désactivé updates-x86_64-source     Mageia 7 - x86_64 - Updates - Source
 Désactivé updates_testing-x86_64-source Mageia 7 - x86_64 - Test Updates - Source
 Désactivé backports-x86_64-source   Mageia 7 - x86_64 - Backports - Source
 Désactivé backports_testing-x86_64-source Mageia 7 - x86_64 - Test Backports - Source
 Désactivé mageia-x86_64-tainted-source Mageia 7 - x86_64 - Tainted - Source
 Désactivé updates-x86_64-tainted-source Mageia 7 - x86_64 - Tainted - Updates - Source
 Désactivé updates_testing-x86_64-tainted-source Mageia 7 - x86_64 - Tainted - Test Updates - Source
 Désactivé backports-x86_64-tainted-source Mageia 7 - x86_64 - Tainted - Backports - Source
 Désactivé backports_testing-x86_64-tainted-source Mageia 7 - x86_64 - Tainted - Test Backports - Source
 Désactivé mageia-x86_64-tainted     Mageia 7 - x86_64 - Tainted
 Désactivé updates-x86_64-tainted    Mageia 7 - x86_64 - Tainted - Updates
 Désactivé updates_testing-x86_64-tainted Mageia 7 - x86_64 - Tainted - Test Updates
 Désactivé backports-x86_64-tainted  Mageia 7 - x86_64 - Tainted - Backports
 Désactivé backports_testing-x86_64-tainted Mageia 7 - x86_64 - Tainted - Test Backports
 Désactivé mageia-x86_64-tainted-debuginfo Mageia 7 - x86_64 - Tainted - Debug
 Désactivé updates-x86_64-tainted-debuginfo Mageia 7 - x86_64 - Tainted - Updates - Debug
 Désactivé updates_testing-x86_64-tainted-debuginfo Mageia 7 - x86_64 - Tainted - Test Updates - Debug
 Désactivé backports-x86_64-tainted-debuginfo Mageia 7 - x86_64 - Tainted - Backports - Debug
 Désactivé backports_testing-x86_64-tainted-debuginfo Mageia 7 - x86_64 - Tainted - Test Backports - Debug
 Désactivé mageia-i586-tainted       Mageia 7 - i586 - Tainted
 Désactivé updates-i586-tainted      Mageia 7 - i586 - Tainted - Updates
 Désactivé updates_testing-i586-tainted Mageia 7 - i586 - Tainted - Test Updates
 Désactivé backports-i586-tainted    Mageia 7 - i586 - Tainted - Backports
 Désactivé backports_testing-i586-tainted Mageia 7 - i586 - Tainted - Test Backports
 Désactivé mageia-i586-tainted-debuginfo Mageia 7 - i586 - Tainted - Debug
 Désactivé updates-i586-tainted-debuginfo Mageia 7 - i586 - Tainted - Updates - Debug
 Désactivé updates_testing-i586-tainted-debuginfo Mageia 7 - i586 - Tainted - Test Updates - Debug
 Désactivé backports-i586-tainted-debuginfo Mageia 7 - i586 - Tainted - Backports - Debug
 Désactivé backports_testing-i586-tainted-debuginfo Mageia 7 - i586 - Tainted - Test Backports - Debug
 Activé    mageia-x86_64             Mageia 7 - x86_64
 Activé    updates-x86_64            Mageia 7 - x86_64 - Updates
 Désactivé updates_testing-x86_64    Mageia 7 - x86_64 - Test Updates
 Désactivé backports-x86_64          Mageia 7 - x86_64 - Backports
 Désactivé backports_testing-x86_64  Mageia 7 - x86_64 - Test Backports
 Désactivé mageia-x86_64-debuginfo   Mageia 7 - x86_64 - Debug
 Désactivé updates-x86_64-debuginfo  Mageia 7 - x86_64 - Updates - Debug
 Désactivé updates_testing-x86_64-debuginfo Mageia 7 - x86_64 - Test Updates - Debug
 Désactivé backports-x86_64-debuginfo Mageia 7 - x86_64 - Backports - Debug
 Désactivé backports_testing-x86_64-debuginfo Mageia 7 - x86_64 - Test Backports - Debug
 Désactivé mageia-i586-nonfree       Mageia 7 - i586 - Nonfree
 Désactivé updates-i586-nonfree      Mageia 7 - i586 - Nonfree - Updates
 Désactivé updates_testing-i586-nonfree Mageia 7 - i586 - Nonfree - Test Updates
 Désactivé backports-i586-nonfree    Mageia 7 - i586 - Nonfree - Backports
 Désactivé backports_testing-i586-nonfree Mageia 7 - i586 - Nonfree - Test Backports
 Désactivé mageia-i586-nonfree-debuginfo Mageia 7 - i586 - Nonfree - Debug
 Désactivé updates-i586-nonfree-debuginfo Mageia 7 - i586 - Nonfree - Updates - Debug
 Désactivé updates_testing-i586-nonfree-debuginfo Mageia 7 - i586 - Nonfree - Test Updates - Debug
 Désactivé backports-i586-nonfree-debuginfo Mageia 7 - i586 - Nonfree - Backports - Debug
 Désactivé backports_testing-i586-nonfree-debuginfo Mageia 7 - i586 - Nonfree - Test Backports - Debug

This is OK for now.

MGA7-64-OK

CC: (none) => ouaurelien

Comment 4 Aurelien Oudelet 2020-11-13 18:53:43 CET 
Validating update
Packages and Advisory in Comment 2.
Advisory pushed to SVN.

Keywords: (none) => advisory, validated_update
Source RPM: packagekit-1.2.0-2.mga8.src.rpm => packagekit-1.1.12-3.mga7.src.rpm
Whiteboard: (none) => MGA7-64-OK
CC: (none) => sysadmin-bugs

Comment 5 Mageia Robot 2020-11-13 22:22:02 CET 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2020-0415.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.