SB2020072878 - Improper Privilege Management in hylafaxplus (Alpine package)
Published: July 28, 2020
Security Bulletin ID
SB2020072878
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Improper Privilege Management (CVE-ID: CVE-2020-15397)
The vulnerability allows a local user to escalate privileges on the system.
HylaFAX+ through 7.0.2 and HylaFAX Enterprise have scripts that execute binaries from directories writable by unprivileged users (e.g., locations under /var/spool/hylafax that are writable by the uucp account). This allows these users to execute code in the context of the user calling these binaries (often root).
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=1b1d9aed72f7aacb92529cd86472da2de9dee79c
- https://git.alpinelinux.org/aports/commit/?id=2eb46eec7d4837f046d433bb8c9b2740a96297b5
- https://git.alpinelinux.org/aports/commit/?id=485b9653ee6333bca062eecf52687bffce8814f5
- https://git.alpinelinux.org/aports/commit/?id=5c0fee19a6ea76f5b2b6e1ccaa3a21340271453e
- https://git.alpinelinux.org/aports/commit/?id=7f053636d6a5e50dfda6224f8e621678e9a0e026