Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Mageia: MGASA-2018-0494 Critical: Keepalived DoS and Info Leaks

mageia
Calendar Grey December 30, 2018
Dist Mageia Esm H88
Revised keepalived version in Mageia resolves various security vulnerabilities, tackling concerns such as Denial of Service (DoS) attacks and potential data exposure.
keepalived before version 2.0.9 didn't check for pathnames with symlinks when writing data to a temporary file upon a call to PrintData or PrintStats

Summary

keepalived before version 2.0.9 didn't check for pathnames with symlinks when writing data to a temporary file upon a call to PrintData or PrintStats. This allowed local users to overwrite arbitrary files if fs.protected_symlinks is set to 0, as demonstrated by a symlink from /tmp/keepalived.data or /tmp/keepalived.stats to /etc/passwd (CVE-2018-19044).
keepalived before version 2.0.9 used mode 0666 when creating new temporary files upon a call to PrintData or PrintStats, potentially leaking sensitive information (CVE-2018-19045).
keepalived before version 2.0.10 didn't check for existing plain files when writing data to a temporary file upon a call to PrintData or PrintStats. If a local attacker had previously created a file with the expected name (e.g., /tmp/keepalived.data or /tmp/keepalived.stats), with read access for the attacker and write access for the keepalived process, then this potentially leaked sensitive information (CVE-2018-19046).
keepalived before version 2.0.9 has...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=24063

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/6YQ7NS6S7B7V2X5NEUJKMTNXL3YPD7H3/

- https://www.cve.org/CVERecord?id=CVE-2018-19044

- https://www.cve.org/CVERecord?id=CVE-2018-19045

- https://www.cve.org/CVERecord?id=CVE-2018-19046

- https://www.cve.org/CVERecord?id=CVE-2018-19115

Topics%20covered

Topics Covered

security advisory information leak critical DoS file overwrite local attack Mageia

Resolution

SRPMS

- 6/core/keepalived-2.0.10-1.mga6

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 29 Dec 2018
URL: https://advisories.mageia.org/MGASA-2018-0494.html
Type: security
CVE: CVE-2018-19044, CVE-2018-19045, CVE-2018-19046, CVE-2018-19115

Topics%20covered

Topics Covered

security advisory information leak critical DoS file overwrite local attack Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here