Lucene search

K
centosCentOS ProjectCESA-2007:1176
HistoryJan 13, 2008 - 7:05 p.m.

autofs security update

2008-01-1319:05:52
CentOS Project
lists.centos.org
50

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

10.1%

CentOS Errata and Security Advisory CESA-2007:1176

The autofs utility controls the operation of the automount daemon, which
automatically mounts file systems when you use them, and unmounts them when
you are not using them. This can include network file systems and CD-ROMs.

There was a security issue with the default configuration of autofs version
5, whereby the entry for the “-hosts” map did not specify the “nodev” mount
option. A local user with control of a remote NFS server could create
special device files on the remote file system, that if mounted using the
default “-hosts” map, could allow the user to access important system
devices. (CVE-2007-6285)

This issue is similar to CVE-2007-5964, which fixed a missing “nosuid”
mount option in autofs. Both the “nodev” and “nosuid” options should be
enabled to prevent a possible compromise of machine integrity.

Due to the fact that autofs always mounted “-hosts” map entries “dev” by
default, autofs has now been altered to always use the “nodev” option when
mounting from the default “-hosts” map. The “dev” option must be explicitly
given in the master map entry to revert to the old behavior. This change
affects only the “-hosts” map which corresponds to the “/net” entry in the
default configuration.

All autofs users are advised to upgrade to these updated packages, which
resolve this issue.

Red Hat would like to thank Tim Baum for reporting this issue.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2008-January/076757.html
https://lists.centos.org/pipermail/centos-announce/2008-January/076758.html

Affected packages:
autofs

Upstream details at:
https://access.redhat.com/errata/RHSA-2007:1176

OSVersionArchitecturePackageVersionFilename
CentOS5i386autofs< 5.0.1-0.rc2.55.el5.2autofs-5.0.1-0.rc2.55.el5.2.i386.rpm
CentOS5x86_64autofs< 5.0.1-0.rc2.55.el5.2autofs-5.0.1-0.rc2.55.el5.2.x86_64.rpm

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

10.1%