Fix security CVE-2014-3153 [answered]
asked 2014-06-20 13:12:55 +0300
Hi is there a fix issue for jolla for cve-2014-3153 ?
Was googling and found nothing about that ...
a explanaition in french : [http://www.planet-libre.org/?post_id=17020]
CVE-2014-3153 Pinkie Pie discovered an issue in the futex subsystem that allows a local user to gain ring 0 control via the futex syscall. An unprivileged user could use this flaw to crash the kernel (resulting in denial of service) or for privilege escalation.
According to the original message: "Possibly invited: Every Android phone with a kernel build date < Jun 3"
Jolla runs: Linux Jolla 3.4.87.20140516.2 #1 SMP PREEMPT Fri Jun 6 16:05:20 UTC 2014 armv7l armv7l armv7l GNU/Linux
Build-date is 6 jun, but the kernel date is "20140516"...
Fuzzillogic ( 2014-06-20 13:23:08 +0300 )editI would say that CVE-2014-3153 is currently not fixed. [https://github.com/KonstaT/sailfishos_kernel_jolla_msm8930/blob/master/kernel/futex.c#L1273] vs. bugfix [http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e9c243a5a6de0be8e584c604d353412584b592f8]
Nekron ( 2014-06-20 17:17:20 +0300 )editCurrently someone with user access can use pkcon to gain root privileges, so fixing the issue mentioned by OP won't improve security.
clau ( 2014-06-20 21:16:03 +0300 )edit