Detections
Analytics
openSUSE 10 Security Update : apparmor (apparmor-1842)
high Nessus Plugin ID 27153
Synopsis
The remote openSUSE host is missing a security update.Description
This update fixes security problems in the AppArmor confinment technology.Since it adds new flags to the profile syntax, you likely should review and adapt your profiles.
- If a profile allowed unconfined execution ('ux') of a child binary it was possible to inject code via LD_PRELOAD or similar environment variables into this child binary and execute code without confiment.
We have added new flag 'Ux' (and 'Px' for 'px') which makes the executed child clear the most critical environment variables (similar to setuid programs).
Special care needs to be taken nevertheless that this interaction between parent and child programs can not be exploited in other ways to gain the rights of the child process.
- If a resource is marked as 'r' in the profile it was possible to use mmap with PROT_EXEC flag set to load this resource as executable piece of code, making it effectively 'ix'.
This could be used by a coordinated attack between two applications to potentially inject code into the reader.
To allow mmap() executable access, supply the 'm' flag to the applications profile.
Please also review the updated documentation.
Solution
Update the affected apparmor packages.Plugin Details
Severity: High
ID: 27153
File Name: suse_apparmor-1842.nasl
Version: 1.13
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 10/17/2007
Updated: 1/14/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:apparmor-admin_en, p-cpe:/a:novell:opensuse:apparmor-parser, p-cpe:/a:novell:opensuse:apparmor-profiles, p-cpe:/a:novell:opensuse:apparmor-utils, p-cpe:/a:novell:opensuse:audit, p-cpe:/a:novell:opensuse:audit-devel, p-cpe:/a:novell:opensuse:audit-libs, p-cpe:/a:novell:opensuse:yast2-apparmor, cpe:/o:novell:opensuse:10.1
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 7/17/2006