Mageia 2019-0021: openafs security update

    Date08 Jan 2019
    CategoryMageia
    138
    Posted ByLinuxSecurity Advisories
    Jeffrey Altman reported that the backup tape controller (butc) process does accept incoming RPCs but does not require (or allow for) authentication of those RPCs, allowing an unauthenticated attacker to perform volume operations with administrator credentials (CVE-2018-16947).
    MGASA-2019-0021 - Updated openafs packages fix security vulnerabilities
    
    Publication date: 08 Jan 2019
    URL: https://advisories.mageia.org/MGASA-2019-0021.html
    Type: security
    Affected Mageia releases: 6
    CVE: CVE-2018-16947,
         CVE-2018-16948,
         CVE-2018-16949
    
    Jeffrey Altman reported that the backup tape controller (butc) process
    does accept incoming RPCs but does not require (or allow for)
    authentication of those RPCs, allowing an unauthenticated attacker to
    perform volume operations with administrator credentials
    (CVE-2018-16947).
    
    Mark Vitale reported that several RPC server routines do not fully
    initialize output variables, leaking memory contents (from both the
    stack and the heap) to the remote caller for otherwise-successful RPCs
    (CVE-2018-16948).
    
    Mark Vitale reported that an unauthenticated attacker can consume large
    amounts of server memory and network bandwidth via specially crafted
    requests, resulting in denial of service to legitimate clients
    (CVE-2018-16949).
    
    References:
    - https://bugs.mageia.org/show_bug.cgi?id=23663
    - https://openafs.org/pages/security/OPENAFS-SA-2018-001.txt
    - https://openafs.org/pages/security/OPENAFS-SA-2018-002.txt
    - https://openafs.org/pages/security/OPENAFS-SA-2018-003.txt
    - http://openafs.org/dl/openafs/1.6.23/RELNOTES-1.6.23
    - https://www.debian.org/security/2018/dsa-4302
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16947
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16948
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16949
    
    SRPMS:
    - 6/core/openafs-1.6.23-1.mga6
    

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"5","type":"x","order":"1","pct":55.56,"resources":[]},{"id":"88","title":"Should be more technical","votes":"3","type":"x","order":"2","pct":33.33,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"1","type":"x","order":"3","pct":11.11,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.