You are viewing james_morris

James Morris - SELinux mitigates remote root vulnerability in OpenPegasus
January 8th, 2008
08:31 am

[Link]

Previous Entry Share Next Entry
SELinux mitigates remote root vulnerability in OpenPegasus
According to Red Hat Security Advisory RHSA-2008-0002, a recently discovered stack overflow flaw in OpenPegasus is mitigated by standard SELinux targeted policy in RHEL4 and RHEL5:
... an unauthenticated remote user could trigger this flaw and potentially execute arbitrary code with root privileges. (CVE-2008-0003)

Note that the tog-pegasus packages are not installed by default on Red Hat Enterprise Linux. The Red Hat Security Response Team believes that it would be hard to remotely exploit this issue to execute arbitrary code, due to the default SELinux targeted policy on Red Hat Enterprise Linux 4 and 5, and the SELinux memory protection tests enabled by default on Red Hat Enterprise Linux.
The enhanced memory protection tests in RHEL5 contribute here to mitigation.

On a related note, Mark Cox has just published an updated grid of vulnerability and threat mitigation features in RHEL and Fedora. Fedora 8, being the most recent distro listed, has the greatest number of these features.

securiy feature grid


Btw, for those able to attend FUDCon in Raleigh over the weekend, there will be a few SELinux folk around to answer questions, listen to feedback etc.


Update:
Someone asked for more Fedora-specific information to compare with other distributions. Here's a well-maintained page on Fedora Security Features.

(4 comments | Leave a comment)

Comments
 
From:(Anonymous)
Date:January 7th, 2008 10:25 pm (UTC)

Other distributions?

(Link)
I'm surprised that Fedora doesn't do a "What's in your Linux distribution?" type of comparison, showing/comparing the security features of popular distributions.

I know that many popular distributions don't have many/most/any of the these features, and otherwise knowledgeable Linux users consider distributions equivalent. Security is important, and this should be highlighted.
From:james_morris
Date:January 7th, 2008 10:27 pm (UTC)

Re: Other distributions?

(Link)
There is this:

http://fedoraproject.org/wiki/Security/Features

But yes, we could do with some more documentation on this.
From:rahulsundaram
Date:January 7th, 2008 11:01 pm (UTC)

Re: Other distributions?

(Link)
I recently rewrote the overview at http://fedoraproject.org/wiki/Overview to highlight the security features page which I also maintain. The overview page is highlighted prominently in http://fedoraproject.org

If you have other ideas on where to document this, do let me know.
From:(Anonymous)
Date:January 8th, 2008 01:01 pm (UTC)

Re: Other distributions?

(Link)
hmm, i don't think it's a good idea that sort of thing usually ends up in a flamefest. IMHO you guys are doing mostly the right thing showing the security evolution of fedora and RHEL, and if someone wants to compare distros, from a security point of view perhaps they should encourage their distro of choice to join the National Vulnerability Database.
I know that wouldn't satisfy the feature by feature request, but when it comes to security for some reason people get very sensitive.
James Morris Powered by LiveJournal.com