First Last Prev Next    This bug is not in your last search results.
Bug 1108153 - (CVE-2018-16947) VUL-1: CVE-2018-16947: openafs: an unauthenticated attacker can replace any volume's content with arbitrary data
(CVE-2018-16947)
VUL-1: CVE-2018-16947: openafs: an unauthenticated attacker can replace any v...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Minor
: ---
Assigned To: Christof Hanke
Security Team bot
https://smash.suse.de/issue/214126/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-09-12 10:21 UTC by Alexander Bergmann
Modified: 2018-09-14 04:19 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexander Bergmann 2018-09-12 10:21:13 UTC 
CVE-2018-16947

An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. The
backup tape controller (butc) process accepts incoming RPCs but does not require
(or allow for) authentication of those RPCs. Handling those RPCs results in
operations being performed with administrator credentials, including
dumping/restoring volume contents and manipulating the backup database. For
example, an unauthenticated attacker can replace any volume's content with
arbitrary data.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-16947
http://openafs.org/pages/security/OPENAFS-SA-2018-001.txt
Comment 1 Christof Hanke 2018-09-12 12:23:42 UTC 
updated packages in OBS to versions 1.6.23 and 1.8.2.
1.8.2 Needs to be approved for Factory.
Comment 2 Christof Hanke 2018-09-14 04:19:50 UTC 
Update accepted to Factory.
First Last Prev Next    This bug is not in your last search results.