Lucene search

CentOS ProjectCESA-2018:0913

HistoryApr 26, 2018 - 5:49 p.m.

policycoreutils security update

2018-04-2617:49:24

CentOS Project

lists.centos.org

101

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.0004 Low

EPSS

Percentile

12.8%

JSON

CentOS Errata and Security Advisory CESA-2018:0913

The policycoreutils packages contain the core policy utilities required to manage a SELinux environment.

Security Fix(es):

policycoreutils: Relabelling of symbolic links in /tmp and /var/tmp change the context of their target instead (CVE-2018-1063)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

This issue was discovered by Renaud Métrich (Red Hat).

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.5 Release Notes linked from the References section.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-cr-announce/2018-April/031335.html

Affected packages:
policycoreutils
policycoreutils-devel
policycoreutils-gui
policycoreutils-newrole
policycoreutils-python
policycoreutils-restorecond
policycoreutils-sandbox

Upstream details at:
https://access.redhat.com/errata/RHSA-2018:0913

OSVersionArchitecturePackageVersionFilename
CentOS7x86_64policycoreutils< 2.5-22.el7policycoreutils-2.5-22.el7.x86_64.rpm
CentOS7i686policycoreutils-devel< 2.5-22.el7policycoreutils-devel-2.5-22.el7.i686.rpm
CentOS7x86_64policycoreutils-devel< 2.5-22.el7policycoreutils-devel-2.5-22.el7.x86_64.rpm
CentOS7x86_64policycoreutils-gui< 2.5-22.el7policycoreutils-gui-2.5-22.el7.x86_64.rpm
CentOS7x86_64policycoreutils-newrole< 2.5-22.el7policycoreutils-newrole-2.5-22.el7.x86_64.rpm
CentOS7x86_64policycoreutils-python< 2.5-22.el7policycoreutils-python-2.5-22.el7.x86_64.rpm
CentOS7x86_64policycoreutils-restorecond< 2.5-22.el7policycoreutils-restorecond-2.5-22.el7.x86_64.rpm
CentOS7x86_64policycoreutils-sandbox< 2.5-22.el7policycoreutils-sandbox-2.5-22.el7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
CentOS	7	x86_64	policycoreutils	< 2.5-22.el7	policycoreutils-2.5-22.el7.x86_64.rpm
CentOS	7	i686	policycoreutils-devel	< 2.5-22.el7	policycoreutils-devel-2.5-22.el7.i686.rpm
CentOS	7	x86_64	policycoreutils-devel	< 2.5-22.el7	policycoreutils-devel-2.5-22.el7.x86_64.rpm
CentOS	7	x86_64	policycoreutils-gui	< 2.5-22.el7	policycoreutils-gui-2.5-22.el7.x86_64.rpm
CentOS	7	x86_64	policycoreutils-newrole	< 2.5-22.el7	policycoreutils-newrole-2.5-22.el7.x86_64.rpm
CentOS	7	x86_64	policycoreutils-python	< 2.5-22.el7	policycoreutils-python-2.5-22.el7.x86_64.rpm
CentOS	7	x86_64	policycoreutils-restorecond	< 2.5-22.el7	policycoreutils-restorecond-2.5-22.el7.x86_64.rpm
CentOS	7	x86_64	policycoreutils-sandbox	< 2.5-22.el7	policycoreutils-sandbox-2.5-22.el7.x86_64.rpm