← Back to team overview

group.of.nepali.translators team mailing list archive

[Bug 1760657] Re: test_160_setattr_CVE_2015_1350 in kernel security test failed with 4.4/4.15 kvm

 

** Changed in: qa-regression-testing
       Status: New => Invalid

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1760657

Title:
  test_160_setattr_CVE_2015_1350 in kernel security test failed with
  4.4/4.15 kvm

Status in QA Regression Testing:
  Invalid
Status in linux package in Ubuntu:
  Incomplete
Status in linux-kvm package in Ubuntu:
  Fix Committed
Status in linux source package in Xenial:
  New
Status in linux-kvm source package in Xenial:
  Fix Committed
Status in linux source package in Bionic:
  Incomplete
Status in linux-kvm source package in Bionic:
  Fix Committed

Bug description:
    FAIL: test_160_setattr_CVE_2015_1350 (__main__.KernelSecurityTest)
    Ensure unpriv user cannot strip setattr attributes via chown() (CVE-2015-1350)
    ----------------------------------------------------------------------
    Traceback (most recent call last):
      File "./test-kernel-security.py", line 1973, in test_160_setattr_CVE_2015_1350
        self.assertShellExitEquals(0, ['setcap', 'cap_sys_nice+ep', testbin])
      File "/home/ubuntu/autotest/client/tmp/ubuntu_qrt_kernel_security/src/qa-regression-testing/scripts/testlib.py", line 1134, in assertShellExitEquals
        self.assertEqual(expected, rc, msg + result + report)
    AssertionError: Got exit code 1, expected 0
    Command: 'setcap', 'cap_sys_nice+ep', '/tmp/setattr-lEzy4F/true'
    Output:
    Failed to set capabilities on file `/tmp/setattr-lEzy4F/true' (Invalid argument)
    The value of the capability argument is not permitted for a file. Or the file is not a regular (non-symlink) file
    
  Steps to reproduce:
    Deploy the node with Xenial 4.4 kernel, install linux-kvm
    sudo apt-get install python-minimal
    git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest-client-tests -b master-next
    git clone --depth=1 git://kernel.ubuntu.com/ubuntu/autotest
    rm -fr autotest/client/tests
    ln -sf ~/autotest-client-tests autotest/client/tests
    AUTOTEST_PATH=/home/ubuntu/autotest sudo -E autotest/client/autotest-local --verbose autotest/client/tests/ubuntu_qrt_kernel_security/control

  ProblemType: Bug
  DistroRelease: Ubuntu 16.04
  Package: linux-image-4.4.0-1019-kvm 4.4.0-1019.24
  ProcVersionSignature: User Name 4.4.0-1019.24-kvm 4.4.98
  Uname: Linux 4.4.0-1019-kvm x86_64
  NonfreeKernelModules: signpost
  ApportVersion: 2.20.1-0ubuntu2.15
  Architecture: amd64
  Date: Mon Apr  2 17:23:14 2018
  ProcEnviron:
   TERM=xterm-256color
   PATH=(custom, no user)
   XDG_RUNTIME_DIR=<set>
   LANG=en_US.UTF-8
   SHELL=/bin/bash
  SourcePackage: linux-kvm
  UpgradeStatus: No upgrade log present (probably fresh install)

To manage notifications about this bug go to:
https://bugs.launchpad.net/qa-regression-testing/+bug/1760657/+subscriptions