[security-announce] [PATCH 1/1] Fuse: Security Update

Tudor Florea tudor.florea at enea.com
Thu Jul 16 15:42:38 CEST 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Fuse: Security update
=========================================================
Product/package: Enea-Linux-4.0 / fuse 2.9.3
CVE Name: CVE-2015-3202
=========================================================
This security update fixes CVE-2015-3202 
fuse local privilege escalation

CVE-2015-1793 Alternative chains certificate forgery

Signed patch and README files
================================
0091-fuse-CVE-2015-3202-Privilege-Escalation.patch
0091-fuse-CVE-2015-3202-Privilege-Escalation.patch.sig
0091-fuse-CVE-2015-3202-Privilege-Escalation.README.asc

Descriptions
============

fusermount in FUSE before 2.9.3-15 does not properly clear the environment
before invoking (1) mount or (2) umount as root, which allows local users 
to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable
that is used by mount's debugging feature.

Severity: High

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3202
http://www.openwall.com/lists/oss-security/2015/05/21/9

How to apply the patches
=======================
 - Preparation
Make sure that you have an installation of Enea Linux and have
applied the existing patches in the right order.

wget https://linux.enea.com/4.0/Enea-Linux-4.0.tar.gz
tar zxf Enea-Linux-4.0.tar.gz
cd Enea-Linux-4.0/poky/meta-openembedded/
<Fetch and apply the existing patches >

 - Fetch, verify and apply the new patch
wget https://linux.enea.com/4.0/patches/\
0091-fuse-CVE-2015-3202-Privilege-Escalation.patch
wget https://linux.enea.com/4.0/patches/\
0091-fuse-CVE-2015-3202-Privilege-Escalation.patch.sig
gpg --verify\
0091-fuse-CVE-2015-3202-Privilege-Escalation.patch.sig
patch -p1 < ./0091-fuse-CVE-2015-3202-Privilege-Escalation.patch
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBAgAGBQJVp+GiAAoJEMCI2qnpaXcsjVoH/RgiXUV58ZgAF7LrItJv2Mx+
wJOr6rNL6O0wIU3ZTMNqbuGJ937M8YKOsycUVN6Sr6gEgR4dn7K8eVwZ3ZWWHxL0
8yJGpYSj2Tps4sg+ugChbJCD+F+0EQwmQCpIQuWp6jaZtNb6DEgIVAYX3bgC2ljU
JD/dfhd11XYZ/tZjKkZ4lPcCJKvJW9OefvoANU2tTLWgjXyiMkDnZnNIjZXie1uc
NXbNC0tzRUFp7oWD/q57vK0f4tzJ4mvQtiY9XLrijlh8tR0IPb0q1hc6bzknjL1/
xQ9+3GVjpS9BRM7HV56fLi8HeHqtIFO3YZFlctOhWL2E5njXkvmgAQ9RmFrSXG0=
=RTxm
-----END PGP SIGNATURE-----



More information about the security-announce mailing list