[Bug 1760657] [NEW] test_160_setattr_CVE_2015_1350 in kernel security test failed with 4.4/4.15 kvm

Mon, 02 Apr 2018 10:41:54 -0700 

Public bug reported:

  FAIL: test_160_setattr_CVE_2015_1350 (__main__.KernelSecurityTest)
  Ensure unpriv user cannot strip setattr attributes via chown() (CVE-2015-1350)
  ----------------------------------------------------------------------
  Traceback (most recent call last):
    File "./test-kernel-security.py", line 1973, in 
test_160_setattr_CVE_2015_1350
      self.assertShellExitEquals(0, ['setcap', 'cap_sys_nice+ep', testbin])
    File 
"/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py",
 line 1134, in assertShellExitEquals
      self.assertEqual(expected, rc, msg + result + report)
  AssertionError: Got exit code 1, expected 0
  Command: 'setcap', 'cap_sys_nice+ep', '/tmp/setattr-lEzy4F/true'
  Output:
  Failed to set capabilities on file `/tmp/setattr-lEzy4F/true' (Invalid 
argument)
  The value of the capability argument is not permitted for a file. Or the file 
is not a regular (non-symlink) file
  
Steps to reproduce:
  Deploy the node with Xenial 4.4 kernel, install linux-kvm
  sudo apt-get install python-minimal
  git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b 
master-next
  git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest
  rm -fr autotest/client/tests
  ln -sf ~/autotest-client-tests autotest/client/tests
  AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local 
--verbose autotest/client/tests/ubuntu_qrt_kernel_security/control

ProblemType: Bug
DistroRelease: Ubuntu 16.04
Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24
ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98
Uname: Linux 4.4.0-1019-kvm x86_64
NonfreeKernelModules: signpost
ApportVersion: 2.20.1-0ubuntu2.15
Architecture: amd64
Date: Mon Apr  2 17:23:14 2018
ProcEnviron:
 TERM=xterm-256color
 PATH=(custom, no user)
 XDG_RUNTIME_DIR=<set>
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: linux-kvm
UpgradeStatus: No upgrade log present (probably fresh install)

** Affects: qa-regression-testing
     Importance: Undecided
         Status: New

** Affects: linux (Ubuntu)
     Importance: Undecided
         Status: Incomplete

** Affects: linux-kvm (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug uec-images xenial

** Also affects: linux (Ubuntu)
   Importance: Undecided
       Status: New

** Also affects: qa-regression-testing
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1760657

Title:
  test_160_setattr_CVE_2015_1350 in kernel security test failed with
  4.4/4.15 kvm

To manage notifications about this bug go to:
https://bugs.launchpad.net/qa-regression-testing/+bug/1760657/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to