CVE-2009-4029

20.12.2009, 02:30

The (1) dist or (2) distcheck rules in GNU Automake 1.11.1, 1.10.3, and release branches branch-1-4 through branch-1-9, when producing a distribution tarball for a package that uses Automake, assign insecure permissions (777) to directories in the build tree, which introduces a race condition that allows local users to modify the contents of package files, introduce Trojan horse programs, or conduct other attacks before the build is complete.

Race Condition

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.4 UNKNOWN	LOCAL	MEDIUM		AV:L/AC:M/Au:N/C:P/I:P/A:P
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 71%

Vendor	Product	Version
gnu	automake	1.10.3
gnu	automake	1.11.1

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

automake

natty	not-affected
maverick	not-affected
lucid	not-affected
karmic	ignored
jaunty	ignored
intrepid	ignored
hardy	ignored
dapper	ignored

Known Exploits!

Common Weakness Enumeration

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References

http://lists.gnu.org/archive/html/automake-patches/2009-11/msg00017.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00010.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00011.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00012.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00013.html

http://savannah.gnu.org/forum/forum.php?forum_id=6077

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021784.1-1

http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0071

http://www.mandriva.com/security/advisories?name=MDVSA-2010:203

http://www.securityfocus.com/archive/1/514526/100/0/threaded

http://www.vupen.com/english/advisories/2009/3579

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11717

http://lists.gnu.org/archive/html/automake-patches/2009-11/msg00017.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00010.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00011.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00012.html

http://lists.gnu.org/archive/html/automake/2009-12/msg00013.html

http://savannah.gnu.org/forum/forum.php?forum_id=6077

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021784.1-1

http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0071

http://www.mandriva.com/security/advisories?name=MDVSA-2010:203

http://www.securityfocus.com/archive/1/514526/100/0/threaded

http://www.vupen.com/english/advisories/2009/3579

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11717