4.4 - USN-2579-1

Executive Summary

Summary
Title	autofs vulnerability

Informations
Name	USN-2579-1	First vendor Publication	2015-04-27
Vendor	Ubuntu	Last vendor Modification	2015-04-27
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	4.4	Attack Range	Local
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.10

Summary:

autofs could be made to run programs as an administrator if program maps were configured.

Software Description: - autofs: kernel-based automounter for Linux

Details:

It was discovered that autofs incorrectly filtered environment variables when using program maps. When program maps were configured, a local user could use this issue to escalate privileges.

This update changes the default behaviour by adding a prefix to environment variables. Sites using program maps will need to adapt to the new variable names, or revert to the previous names by using a new configuration option called FORCE_STANDARD_PROGRAM_MAP_ENV.

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 14.10:
autofs 5.0.8-1ubuntu1.1

After a standard system update you need to reboot your computer to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2579-1
CVE-2014-8169

Package Information:
https://launchpad.net/ubuntu/+source/autofs/5.0.8-1ubuntu1.1

Original Source

Url : http://www.ubuntu.com/usn/USN-2579-1

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-264	Permissions, Privileges, and Access Controls

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:29148

Oval ID:	oval:org.mitre.oval:def:29148
Title:	SUSE-SU-2015:1020-1 -- Security update for autofs (moderate)
Description:	autofs was updated to fix one security issue. This security issue was fixed: - CVE-2014-8169: Prevent potential privilege escalation via interpreter load path for program-based automount maps (bnc#917977). These non-security issues were fixed: - Dont pass sloppy option for other than nfs mounts (bnc#901448, bnc#916203)
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2015:1020-1 CVE-2014-8169	Version:	3
Platform(s):	SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Desktop 12	Product(s):	autofs
Definition Synopsis:
Operation system section SUSE Linux Enterprise Server 12 is installed AND SUSE Linux Enterprise Desktop 12 is installed Packages match section autofs is earlier than 0:5.0.9-8.1 AND autofs-debuginfo is earlier than 0:5.0.9-8.1 AND autofs-debugsource is earlier than 0:5.0.9-8.1

CPE : Common Platform Enumeration

Type	Description	Count
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*	1
Os	Redhat Enterprise Linux Hpc Node cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*	1
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*	1
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*	1

Nessus® Vulnerability Scanner

Date	Description
2015-12-22	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20151119_autofs_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2015-12-15	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2015-626.nasl - Type : ACT_GATHER_INFO
2015-12-02	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2015-2417.nasl - Type : ACT_GATHER_INFO
2015-11-24	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2015-2417.nasl - Type : ACT_GATHER_INFO
2015-11-20	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-2417.nasl - Type : ACT_GATHER_INFO
2015-08-04	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150722_autofs_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2015-07-30	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2015-1344.nasl - Type : ACT_GATHER_INFO
2015-07-28	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2015-1344.nasl - Type : ACT_GATHER_INFO
2015-07-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-1344.nasl - Type : ACT_GATHER_INFO
2015-06-10	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-1020-1.nasl - Type : ACT_GATHER_INFO
2015-04-28	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2579-1.nasl - Type : ACT_GATHER_INFO
2015-03-12	Name : The remote openSUSE host is missing a security update. File : openSUSE-2015-220.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2015-04-29 13:28:51	Multiple Updates
2015-04-27 17:25:02	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	1
CPE ID(s)	4
Nessus® Exploit(s)	12

	Related
4.4	CVE-2014-8169
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

4.4 - USN-2579-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU