Bug 732607 - (CVE-2011-3145) CVE-2011-3145 ecryptfs-utils: incorrect mtab group ownership
CVE-2011-3145 ecryptfs-utils: incorrect mtab group ownership
Status: CLOSED ERRATA
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
medium Severity medium
: ---
: ---
Assigned To: Red Hat Product Security
public=20110823,reported=20110822,sou...
: Security
Depends On: 729470 729471 729472 729473
Blocks: 729476
  Show dependency treegraph
 
Reported: 2011-08-23 01:20 EDT by Huzaifa S. Sidhpurwala
Modified: 2015-11-24 09:40 EST (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2012-08-03 04:30:47 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)
proposed patch (2.43 KB, patch)
2011-08-23 01:25 EDT, Huzaifa S. Sidhpurwala
no flags Details | Diff

  None (edit)
Description Huzaifa S. Sidhpurwala 2011-08-23 01:20:06 EDT
When mount.ecrpytfs_private calls set setreuid() it doesn't also set the
effective group id. So when it creates the new version, mtab.tmp, it's
created with the group id of the user running mount.ecryptfs_private.

Reference: 
https://launchpad.net/bugs/830850
Comment 1 Huzaifa S. Sidhpurwala 2011-08-23 01:25:50 EDT
Created attachment 519393 [details]
proposed patch
Comment 3 Tomas Hoger 2011-08-24 03:26:40 EDT
Public now via Ubuntu advisory:
  http://www.ubuntu.com/usn/usn-1196-1/
Comment 6 errata-xmlrpc 2011-08-31 15:41:06 EDT
This issue has been addressed in following products:

  Red Hat Enterprise Linux 5
  Red Hat Enterprise Linux 6

Via RHSA-2011:1241 https://rhn.redhat.com/errata/RHSA-2011-1241.html

Note You need to log in before you can comment on or make changes to this bug.