製品・ソフトウェアに関する情報

JVN脆弱性詳細

SELinux policycoreutil におけるサンドボックス外で任意のコマンドを実行される脆弱性

Title	SELinux policycoreutil におけるサンドボックス外で任意のコマンドを実行される脆弱性
Summary	SELinux policycoreutil には、サンドボックス外で任意のコマンドを実行される脆弱性が存在します。
Possible impacts	ローカルユーザにより、巧妙に細工された TIOCSTI ioctl コールを介して、サンドボックス外で任意のコマンドを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Sept. 23, 2016, midnight
Registration Date	Jan. 31, 2017, 5:42 p.m.
Last Update	Jan. 31, 2017, 5:42 p.m.

Affected System

レッドハット

Red Hat Enterprise Linux Desktop (v. 6)

Red Hat Enterprise Linux Desktop (v. 7)

Red Hat Enterprise Linux HPC Node (v. 6)

Red Hat Enterprise Linux HPC Node (v. 7)

Red Hat Enterprise Linux Server (v. 6)

Red Hat Enterprise Linux Server (v. 7)

Red Hat Enterprise Linux Server TUS (v. 7.3)

Red Hat Enterprise Linux Workstation (v. 6)

Red Hat Enterprise Linux Workstation (v. 7)

Fedora Project

Fedora 25

SELinuxProject

SELinux

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2016-7545	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7545
National Vulnerability Database (NVD)
2	CVE-2016-7545	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7545

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-284	https://cwe.mitre.org/data/definitions/284.html

ベンダー情報

No	Name	URL
Fedora Update Notification
1	FEDORA-2016-b7e8e980ef	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPRNK3PWMAVNJZ53YW5GOEOGJSFNAQIF/
GitHub
2	sandbox: create a new session for sandboxed processes	https://github.com/SELinuxProject/selinux/commit/acca96a135a4d2a028ba9b636886af99c0915379
Red Hat Security Advisory
3	RHSA-2016:2702	http://rhn.redhat.com/errata/RHSA-2016-2702.html
Selinux mailing list
4	[PATCH 2/2] sandbox: create a new session for sandboxed processes	https://marc.info/?l=selinux&m=147465160112766&w=2

Change Log

No	Changed Details	Date of change
0	[2017年01月31日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2016-7545

Summary	SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.
Publication Date	Jan. 20, 2017, 5:59 a.m.
Registration Date	Jan. 26, 2021, 2:17 p.m.
Last Update	Nov. 21, 2024, 11:58 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:selinux_project:selinux:-:::::::*

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:fedoraproject:fedora:25:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:::::::*

Related information, measures and tools

No	URL	タグ
1	http://rhn.redhat.com/errata/RHSA-2016-2702.html	Third Party Advisory
2	http://rhn.redhat.com/errata/RHSA-2016-2702.html	Third Party Advisory
3	http://rhn.redhat.com/errata/RHSA-2017-0535.html
4	http://rhn.redhat.com/errata/RHSA-2017-0535.html
5	http://rhn.redhat.com/errata/RHSA-2017-0536.html
6	http://rhn.redhat.com/errata/RHSA-2017-0536.html
7	http://www.openwall.com/lists/oss-security/2016/09/25/1	Mailing List Third Party Advisory
8	http://www.openwall.com/lists/oss-security/2016/09/25/1	Mailing List Third Party Advisory
9	http://www.securityfocus.com/bid/93156	Third Party Advisory VDB Entry
10	http://www.securityfocus.com/bid/93156	Third Party Advisory VDB Entry
11	http://www.securitytracker.com/id/1037283
12	http://www.securitytracker.com/id/1037283
13	https://github.com/SELinuxProject/selinux/commit/acca96a135a4d2a028ba9b636886af99c0915379	Issue Tracking Patch Third Party Advisory
14	https://github.com/SELinuxProject/selinux/commit/acca96a135a4d2a028ba9b636886af99c0915379	Issue Tracking Patch Third Party Advisory
15	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPRNK3PWMAVNJZ53YW5GOEOGJSFNAQIF/
16	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPRNK3PWMAVNJZ53YW5GOEOGJSFNAQIF/
17	https://marc.info/?l=selinux&m=147465160112766&w=2	Third Party Advisory
18	https://marc.info/?l=selinux&m=147465160112766&w=2	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-284	不適切なアクセス制御	https://cwe.mitre.org/data/definitions/284.html

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:::::::*