[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-06-07 Thread Steve Beattie
** Tags added: kernel-cve-tracking-bug -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1547400 Title: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-05-06 Thread halfdog
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2016-2854 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2016-2853 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu.

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-05-05 Thread Steve Beattie
** Changed in: linux-snapdragon (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Precise) Importance: Undecided => Low ** Changed in: linux-snapdragon (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Wily)

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-04-27 Thread Steve Beattie
** Also affects: linux (Ubuntu Yakkety) Importance: Low Status: Confirmed ** Also affects: linux-ti-omap4 (Ubuntu Yakkety) Importance: Low Status: Invalid ** Also affects: linux-armadaxp (Ubuntu Yakkety) Importance: Low Status: Invalid ** Also affects:

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-04-19 Thread Steve Beattie
** Changed in: linux-manta (Ubuntu Xenial) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1547400 Title: aufs fails to handle sanitize xattrs in workdir, copies SUID

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-03-07 Thread Steve Beattie
** Tags added: kernel-cve-skip-description ** Also affects: linux (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-armadaxp (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-quantal (Ubuntu Precise) Importance:

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-02-24 Thread Tyler Hicks
Note that the severity of this issue is lower than the similar issue that was discovered in overlayfs since the aufs module has to be loaded with the 'allow_userns' parameter. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu.

[Bug 1547400] Re: aufs fails to handle sanitize xattrs in workdir, copies SUID binaries from no-suid fuse mounts

2016-02-24 Thread Tyler Hicks
This is now public: http://openwall.com/lists/oss-security/2016/02/24/9 ** Information type changed from Private Security to Public Security ** Changed in: linux (Ubuntu) Status: New => Confirmed ** Changed in: linux (Ubuntu) Importance: Undecided => Medium -- You received this