Branch sisyphus update bulletin.

Package openquantumsafe-openssh updated to version 8.6p1.202108-alt3 for branch sisyphus in task 286065.

Published: 2021-09-26
Modified: 2024-11-21

CVE-2021-41617

sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

Severity: HIGH (7.0) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Package motion updated to version 4.3.2-alt2 for branch sisyphus in task 286062.

/etc/motion/motion.conf в spec-файле без noreplace

Package kernel-image-std-def updated to version 5.10.69-alt1 for branch sisyphus in task 285962.

Published: 2017-02-17

BDU:2017-01556

Уязвимость операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании или получить привилегии суперпользователя

Severity: HIGH (7.8) Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-6074

Published: 2021-01-12

BDU:2021-03395

Уязвимость ядра операционной системы Linux, связанная с использованием области памяти после её освобождения, позволяющая нарушителю получить доступ к конфиденциальной информации или вызвать отказ в обслуживании

Severity: HIGH (7.8) Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2020-16119

Published: 2021-09-19

BDU:2022-00681

Уязвимость функции loop_rw_iter (fs/io_uring.c ) ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.8) Vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

References:

CVE-2021-41073

Published: 2017-02-19
Modified: 2024-11-21

CVE-2017-6074

The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2021-01-14
Modified: 2024-11-21

CVE-2020-16119

Use-after-free vulnerability in the Linux kernel exploitable by a local attacker due to reuse of a DCCP socket with an attached dccps_hc_tx_ccid object as a listener after being released. Fixed in Ubuntu Linux kernel 5.4.0-51.56, 5.3.0-68.63, 4.15.0-121.123, 4.4.0-193.224, 3.13.0.182.191 and 3.2.0-149.196.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2021-09-19
Modified: 2024-11-21

CVE-2021-41073

loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc//maps for exploitation.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Package alterator-secsetup updated to version 2.1-alt1 for branch sisyphus in task 286073.

В интерфейсе web alterator отсутствуют "Настройки безопасности"

Package kernel-image-std-kvm updated to version 5.10.69-alt1 for branch sisyphus in task 286076.

Published: 2021-09-19

BDU:2022-00681

Severity: HIGH (7.8) Vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

References:

CVE-2021-41073

Published: 2021-09-19
Modified: 2024-11-21

CVE-2021-41073

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Branch sisyphus update on 2021-09-29

ALT-BU-2021-4236-1

ALT-PU-2021-2910-1

Closed vulnerabilities

CVE-2021-41617

ALT-PU-2021-2911-1

Closed bugs

Bug #41020

ALT-PU-2021-2912-1

Closed vulnerabilities

BDU:2017-01556

BDU:2021-03395

BDU:2022-00681

CVE-2017-6074

CVE-2020-16119

CVE-2021-41073

ALT-PU-2021-2914-1

Closed bugs

Bug #37902

ALT-PU-2021-2915-1

Closed vulnerabilities

BDU:2022-00681

CVE-2021-41073