OpenVZ Forum: Support » Re: kernel security issue on RHEL5 x86

Home » General » Support » Re: kernel security issue on RHEL5 x86_64 (New security issue in kernel)

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: kernel security issue on RHEL5 x86_64 [message #40685]

Mon, 20 September 2010 18:17

canfone
Messages: 9
Registered: December 2008

Junior Member

There is a new kernel security issue out:

https://access.redhat.com/kb/docs/DOC-40265

http://www.webhostingtalk.com/showthread.php?t=981925

Does anyone know how this would affect OpenVZ kernel, can we expect an update to resolve this security issue soon?

Report message to a moderator

Re: kernel security issue on RHEL5 x86_64 [message #40688 is a reply to message #40685]

Tue, 21 September 2010 08:45

pug123
Messages: 22
Registered: July 2008

Junior Member

This is very serious issue. I wonder if attacker can gain access via VE into VPS node.

Report message to a moderator

Re: kernel security issue on RHEL5 x86_64 [message #40689 is a reply to message #40688]

Tue, 21 September 2010 09:43

TheStig
Messages: 94
Registered: December 2008

Member

i've tested the exploit (http://sota.gen.nz/compat2/robert_you_suck.c) yesterday on two openvz-kernles 2.6.24-23-openvz (ubuntu 8.04) 2.6.26-2-openvz-amd64 (debian lenny) and it apparently didn't work

./robert_you_suck
symbol table not available, aborting!
Process finished

openvz is also mentioned in connection with this bug here: http://seclists.org/fulldisclosure/2010/Sep/268

but i can't figure out what is meant by "OpenVZ Payload / GRsec bypass removed for kidiots and fame whores. (same thing right Wink

)
"

ps: i've tested the exploit on the HN not a VPS

[Updated on: Tue, 21 September 2010 09:45]

Report message to a moderator

Re: kernel security issue on RHEL5 x86_64 [message #40690 is a reply to message #40685]

Tue, 21 September 2010 10:23

matrix64
Messages: 4
Registered: November 2009

Junior Member

I've tested it on 2.6.32.15-openvz and it only works if you run it on HN. When I ran it in 32 or 64-bit VE it didn't work.

Report message to a moderator

Re: kernel security issue on RHEL5 x86_64 [message #40704 is a reply to message #40685]

Wed, 22 September 2010 14:11

TheStig
Messages: 94
Registered: December 2008

Member

new 2.6.32 based kernel available
http://wiki.openvz.org/Download/kernel/2.6.32/2.6.32-dyomin. 1

i'm currently compiling for my openvz-testbed, as the ovz-2.6.32.14-kernel that is running atm is susceptible to the exploit.

BTW: http://bugzilla.openvz.org/show_bug.cgi?id=1542 is still _NOT_ fixed.

Report message to a moderator

Re: kernel security issue on RHEL5 x86_64 [message #40708 is a reply to message #40685]

Wed, 22 September 2010 16:03

TheStig
Messages: 94
Registered: December 2008

Member

testuser@baghira:~$ ./robert_you_suck 
resolved symbol commit_creds to 0xffffffff81075ad8
resolved symbol prepare_kernel_cred to 0xffffffff810759ef
mapping at 3f80000000
UID 519, EUID:519 GID:1000, EGID:1000
$ uname -r
2.6.32.22-ovz-dyomin.1
$ whoami
testuser

perfect ,-)

Report message to a moderator

Re: kernel security issue on RHEL5 x86_64 [message #41070 is a reply to message #40685]

Thu, 11 November 2010 10:08

dabora
Messages: 1
Registered: November 2010

Junior Member

If in RHEL 6 will include fresh packages, the need for Fedora can be reduced. Only RHEL 6 is wait and wait: the cycle of the release of RHEL - 3 years, and then the second version will not until the autumn.

dabora

Report message to a moderator