Candidate: CVE-2014-2667
PublicDate: 2014-11-16 01:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2667
 http://seclists.org/oss-sec/2014/q1/687
Description:
 Race condition in the _get_masked_mode function in Lib/os.py in Python 3.2
 through 3.5, when exist_ok is set to true and multiple threads are used,
 might allow local users to bypass intended file permissions by leveraging a
 separate application vulnerability before the umask has been set to the
 expected value.
Ubuntu-Description:
Notes:
 seth-arnold> The upstream patch uses umask(0022) instead of umask(0) -- which
  seems as bad as the original behaviour. We should see if there is an updated
  patch when we prepare our packages that replaces the bad code.
 mdeslaur> introduced by the fix for http://bugs.python.org/issue9299
 mdeslaur> upstream commited a better fix than the proposed one in the bug
 mdeslaur> but it now changes behavour
Bugs:
 http://bugs.python.org/issue21082
Priority: low
Discovered-by: Ryan Lortie
Assigned-to:
CVSS: 

Patches_python2.7:
upstream_python2.7: not-affected
lucid_python2.7: DNE
precise_python2.7: not-affected
precise/esm_python2.7: not-affected
quantal_python2.7: not-affected
saucy_python2.7: not-affected
trusty_python2.7: not-affected
trusty/esm_python2.7: not-affected
utopic_python2.7: not-affected
vivid_python2.7: not-affected
vivid/stable-phone-overlay_python2.7: DNE
vivid/ubuntu-core_python2.7: not-affected
wily_python2.7: not-affected
xenial_python2.7: not-affected
esm-infra/xenial_python2.7: not-affected
yakkety_python2.7: not-affected
zesty_python2.7: not-affected
artful_python2.7: not-affected
bionic_python2.7: not-affected
cosmic_python2.7: not-affected
devel_python2.7: not-affected

Patches_python3.2:
 upstream: http://hg.python.org/cpython/rev/9186f4a18584e
upstream_python3.2: needed
lucid_python3.2: DNE
precise_python3.2: ignored (reached end-of-life)
precise/esm_python3.2: DNE (precise was needed)
quantal_python3.2: ignored (reached end-of-life)
saucy_python3.2: DNE
trusty_python3.2: DNE
trusty/esm_python3.2: DNE
utopic_python3.2: DNE
vivid_python3.2: DNE
vivid/stable-phone-overlay_python3.2: DNE
vivid/ubuntu-core_python3.2: DNE
wily_python3.2: DNE
xenial_python3.2: DNE
yakkety_python3.2: DNE
zesty_python3.2: DNE
artful_python3.2: DNE
bionic_python3.2: DNE
cosmic_python3.2: DNE
devel_python3.2: DNE

Patches_python3.4:
 upstream: http://hg.python.org/cpython/rev/c24dd53ab4b9
upstream_python3.4: needed
lucid_python3.4: DNE
precise_python3.4: DNE
precise/esm_python3.4: DNE
quantal_python3.4: DNE
saucy_python3.4: DNE
trusty_python3.4: released (3.4.3-1ubuntu1~14.04)
trusty/esm_python3.4: released (3.4.3-1ubuntu1~14.04)
utopic_python3.4: not-affected (3.4.2-1)
vivid_python3.4: not-affected (3.4.3-3)
vivid/stable-phone-overlay_python3.4: not-affected (3.4.3-3)
vivid/ubuntu-core_python3.4: not-affected (3.4.3-3)
wily_python3.4: not-affected (3.4.3-7)
xenial_python3.4: DNE
yakkety_python3.4: DNE
zesty_python3.4: DNE
artful_python3.4: DNE
bionic_python3.4: DNE
cosmic_python3.4: DNE
devel_python3.4: DNE