CVE-2015-3246

Published: 11 August 2015

libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.

From the Ubuntu Security Team

It was discovered that libuser has incomplete blacklist vulnerability. A local user could use it to cause a denial of service.

Priority

Status

Package	Release	Status
libuser Launchpad, Ubuntu, Debian	artful	Not vulnerable (1:0.62~dfsg-0.1)
	bionic	Not vulnerable (1:0.62~dfsg-0.1)
	cosmic	Not vulnerable (1:0.62~dfsg-0.1)
	disco	Not vulnerable (1:0.62~dfsg-0.1)
	eoan	Not vulnerable (1:0.62~dfsg-0.1)
	focal	Not vulnerable (1:0.62~dfsg-0.1)
	groovy	Not vulnerable (1:0.62~dfsg-0.1)
	hirsute	Not vulnerable (1:0.62~dfsg-0.1)
	impish	Not vulnerable (1:0.62~dfsg-0.1)
	jammy	Not vulnerable (1:0.62~dfsg-0.1)
	kinetic	Not vulnerable (1:0.62~dfsg-0.1)
	lunar	Not vulnerable (1:0.62~dfsg-0.1)
	mantic	Not vulnerable (1:0.62~dfsg-0.1)
	precise	Ignored (end of life)
	trusty	Released (1:0.56.9.dfsg.1-1.2ubuntu2+esm1) Available with Ubuntu Pro or Ubuntu Pro (Infra-only)
	upstream	Released (1:0.62~dfsg-0.1)
	vivid	Ignored (end of life)
	wily	Ignored (end of life)
	xenial	Needed
	yakkety	Not vulnerable (1:0.62~dfsg-0.1)
	zesty	Not vulnerable (1:0.62~dfsg-0.1)
	Patches: upstream: https://fedorahosted.org/libuser/changeset/d73aa2a5a9ce5bdd349dff46e3e4885f2b194a95/

References

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793465

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›