CVE-2014-2667
Published: 16 November 2014
Race condition in the _get_masked_mode function in Lib/os.py in Python 3.2 through 3.5, when exist_ok is set to true and multiple threads are used, might allow local users to bypass intended file permissions by leveraging a separate application vulnerability before the umask has been set to the expected value.
Notes
Author | Note |
---|---|
seth-arnold | The upstream patch uses umask(0022) instead of umask(0) -- which seems as bad as the original behaviour. We should see if there is an updated patch when we prepare our packages that replaces the bad code. |
mdeslaur | introduced by the fix for http://bugs.python.org/issue9299 upstream commited a better fix than the proposed one in the bug but it now changes behavour |
Priority
Status
Package | Release | Status |
---|---|---|
python2.7 Launchpad, Ubuntu, Debian |
artful |
Not vulnerable
|
bionic |
Not vulnerable
|
|
cosmic |
Not vulnerable
|
|
lucid |
Does not exist
|
|
precise |
Not vulnerable
|
|
quantal |
Not vulnerable
|
|
saucy |
Not vulnerable
|
|
trusty |
Not vulnerable
|
|
upstream |
Not vulnerable
|
|
utopic |
Not vulnerable
|
|
vivid |
Not vulnerable
|
|
wily |
Not vulnerable
|
|
xenial |
Not vulnerable
|
|
yakkety |
Not vulnerable
|
|
zesty |
Not vulnerable
|
|
python3.2 Launchpad, Ubuntu, Debian |
artful |
Does not exist
|
bionic |
Does not exist
|
|
cosmic |
Does not exist
|
|
lucid |
Does not exist
|
|
quantal |
Ignored
(end of life)
|
|
saucy |
Does not exist
|
|
trusty |
Does not exist
|
|
upstream |
Needed
|
|
utopic |
Does not exist
|
|
vivid |
Does not exist
|
|
wily |
Does not exist
|
|
xenial |
Does not exist
|
|
yakkety |
Does not exist
|
|
zesty |
Does not exist
|
|
precise |
Ignored
(end of life)
|
|
Patches: upstream: http://hg.python.org/cpython/rev/9186f4a18584e |
||
python3.4 Launchpad, Ubuntu, Debian |
artful |
Does not exist
|
bionic |
Does not exist
|
|
cosmic |
Does not exist
|
|
lucid |
Does not exist
|
|
precise |
Does not exist
|
|
quantal |
Does not exist
|
|
saucy |
Does not exist
|
|
trusty |
Released
(3.4.3-1ubuntu1~14.04)
|
|
upstream |
Needed
|
|
utopic |
Not vulnerable
(3.4.2-1)
|
|
vivid |
Not vulnerable
(3.4.3-3)
|
|
wily |
Not vulnerable
(3.4.3-7)
|
|
xenial |
Does not exist
|
|
yakkety |
Does not exist
|
|
zesty |
Does not exist
|
|
Patches: upstream: http://hg.python.org/cpython/rev/c24dd53ab4b9 |