[3.5] Screen: root exploit 4.5.0 (CVE-2017-5618)
Commit f86a374 (“screen.c: adding permissions check for the logfile name”, 2015-11-04)
The check opens the logfile with full root privileges. This allows us
to
truncate any file or create a root-owned file with any contents in any
directory and can be easily exploited to full root access in several
ways.
Affects:
screen 4.4.0 to and inclusive 4.5.0
References:
http://www.openwall.com/lists/oss-security/2017/01/24/10
http://savannah.gnu.org/bugs/?50142
(from redmine: issue id 6730, created on 2017-01-25, closed on 2017-03-02)
- Relations:
- parent #6728 (closed)
- Changesets:
- Revision 62ff75ac by Natanael Copa on 2017-03-01T17:56:01Z:
main/screen: security upgrade to 4.5.1 (CVE-2017-5618)
fixes #6730