The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Fedora | Fedoraproject | 23 (including) | 23 (including) |
| Fedora | Fedoraproject | 24 (including) | 24 (including) |
| Fedora | Fedoraproject | 25 (including) | 25 (including) |
| Mock | Ubuntu | artful | * |
| Mock | Ubuntu | esm-apps/xenial | * |
| Mock | Ubuntu | trusty | * |
| Mock | Ubuntu | upstream | * |
| Mock | Ubuntu | xenial | * |
| Mock | Ubuntu | yakkety | * |
| Mock | Ubuntu | zesty | * |
References
- http://www.openwall.com/lists/oss-security/2016/09/13/2
- http://www.securityfocus.com/bid/92948
- https://bugzilla.redhat.com/show_bug.cgi?id=1375490
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFC4LU6GYYEVUK6LQ2FKUGMZXRTLLL5A/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VYLMPA5VLLX67DUJ6XLJ2TIW6CX2CFL4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X5PH2YGYWYUAYPHK32SGUZGZXQEBEYNK/
- http://www.openwall.com/lists/oss-security/2016/09/13/2
- http://www.securityfocus.com/bid/92948
- https://bugzilla.redhat.com/show_bug.cgi?id=1375490
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFC4LU6GYYEVUK6LQ2FKUGMZXRTLLL5A/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VYLMPA5VLLX67DUJ6XLJ2TIW6CX2CFL4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X5PH2YGYWYUAYPHK32SGUZGZXQEBEYNK/