Bugzilla – Bug 1108153
VUL-1: CVE-2018-16947: openafs: an unauthenticated attacker can replace any volume's content with arbitrary data
Last modified: 2018-09-14 04:19:50 UTC
An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. The
backup tape controller (butc) process accepts incoming RPCs but does not require
(or allow for) authentication of those RPCs. Handling those RPCs results in
operations being performed with administrator credentials, including
dumping/restoring volume contents and manipulating the backup database. For
example, an unauthenticated attacker can replace any volume's content with
updated packages in OBS to versions 1.6.23 and 1.8.2.
1.8.2 Needs to be approved for Factory.
Update accepted to Factory.