Описание
Security update for rubygem-passenger
This update for rubygem-passenger fixes the following issue:
The following security vulnerability was addressed:
- CVE-2018-12029: Fixed a file system access race condition in the chown command, which allowed for local privilege escalation and affects the Nginx module (bsc#1097663).
Список пакетов
SUSE Linux Enterprise Module for Containers 12
ruby2.1-rubygem-passenger-5.0.18-12.9.1
rubygem-passenger-5.0.18-12.9.1
rubygem-passenger-apache2-5.0.18-12.9.1
Ссылки
- Link for SUSE-SU-2018:2039-1
- E-Mail link for SUSE-SU-2018:2039-1
- SUSE Security Ratings
- SUSE Bug 1097663
- SUSE CVE CVE-2018-12029 page
Описание
A race condition in the nginx module in Phusion Passenger 3.x through 5.x before 5.3.2 allows local escalation of privileges when a non-standard passenger_instance_registry_dir with insufficiently strict permissions is configured. Replacing a file with a symlink after the file was created, but before it was chowned, leads to the target of the link being chowned via the path. Targeting sensitive files such as root's crontab file allows privilege escalation.
Затронутые продукты
SUSE Linux Enterprise Module for Containers 12:ruby2.1-rubygem-passenger-5.0.18-12.9.1
SUSE Linux Enterprise Module for Containers 12:rubygem-passenger-5.0.18-12.9.1
SUSE Linux Enterprise Module for Containers 12:rubygem-passenger-apache2-5.0.18-12.9.1
Ссылки
- CVE-2018-12029
- SUSE Bug 1097655
- SUSE Bug 1097663
- SUSE Bug 1097664