CVE-2018-7169

Priority
Description
An issue was discovered in shadow 4.5. newgidmap (in shadow-utils) is
setuid and allows an unprivileged user to be placed in a user namespace
where setgroups(2) is permitted. This allows an attacker to remove
themselves from a supplementary group, which may allow access to certain
filesystem paths if the administrator has used "group blacklisting" (e.g.,
chmod g-rwx) to restrict access to paths. This flaw effectively reverts a
security feature in the kernel (in particular, the /proc/self/setgroups
knob) to prevent this sort of privilege escalation.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 19.04 (Disco Dingo):ignored (reached end-of-life)
Ubuntu 19.10 (Eoan Ermine):needed
Ubuntu 20.04 (Focal Fossa):needed
More Information

Updated: 2020-01-23 20:42:14 UTC (commit b4629892d998f2ede31f59bb7508dc50a92ac664)