CVE-2017-18078

Priority
Description
systemd-tmpfiles in systemd before 237 attempts to support
ownership/permission changes on hardlinked files even if the
fs.protected_hardlinks sysctl is turned off, which allows local users to
bypass intended access restrictions via vectors involving a hard link to a
file for which the user lacks write access, as demonstrated by changing the
ownership of the /etc/passwd file.
Notes
ratliffmitigated by fs.protected_hardlinks = 1
mdeslaurpatch simply refuses to set hardlink file permissions if the
kernel hardening feature is turned off, which may result in
breakage. We will not be releasing an update for this issue as
our default configuration is not vulnerable.
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):ignored
Ubuntu 16.04 LTS (Xenial Xerus):ignored
Ubuntu 18.04 LTS (Bionic Beaver):ignored
Patches:
Upstream:https://github.com/systemd/systemd/commit/5579f85663d10269e7ac7464be6548c99cea4ada
More Information

Updated: 2020-01-29 19:58:49 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)