mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity

mtr: patch CVE-2025-49809

Browse Source 
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-49809

Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
This commit is contained in:
Ankur Tyagi
2026-01-09 22:28:36 +13:00
committed by Anuj Mittal
parent b45ac4e0ef
commit c73fe4bd7e
2 changed files with 42 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-networking/recipes-support/mtr/mtr/CVE-2025-49809.patch
+39
View File
@@ -0,0 +1,39 @@
From 9b5107ff91b72c0104d9dbeee076f37f584ea4b4 Mon Sep 17 00:00:00 2001
From: "R.E. Wolff" <R.E.Wolff@BitWizard.nl>
Date: Sun, 29 Jun 2025 14:06:00 +0200
Subject: [PATCH] Added protection against use of MTR_PACKET under special
circumstances
CVE: CVE-2025-49809
Upstream-Status: Backport [https://github.com/traviscross/mtr/commit/5226f105f087c29d3cfad9f28000e7536af91ac6]
(cherry picked from commit 5226f105f087c29d3cfad9f28000e7536af91ac6)
Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
---
ui/cmdpipe.c | 13 ++++++++++---
1 file changed, 10 insertions(+), 3 deletions(-)
diff --git a/ui/cmdpipe.c b/ui/cmdpipe.c
index d22b236..1a66293 100644
--- a/ui/cmdpipe.c
+++ b/ui/cmdpipe.c
@@ -220,10 +220,17 @@ void execute_packet_child(
the path to the mtr-packet executable. This is necessary
for debugging changes for mtr-packet.
*/
- char *mtr_packet_path = getenv("MTR_PACKET");
- if (mtr_packet_path == NULL) {
+ char * mtr_packet_path = NULL;
+
+ // In the rare case that mtr-packet is not setuid-root,
+ // and a select group of users has sudo privileges to run
+ // mtr and not much else, THEN create /etc/mtr.is.run.under.sudo
+ // to prevent a privilege escalation when one of those accounts
+ // is compromised. CVE-2025-49809
+ if (access ("/etc/mtr.is.run.under.sudo", F_OK) != 0)
+ mtr_packet_path = getenv("MTR_PACKET");
+ if (mtr_packet_path == NULL)
mtr_packet_path = "mtr-packet";
- }
/*
First, try to execute mtr-packet from PATH
meta-networking/recipes-support/mtr/mtr_0.95.bb
+3 -1
View File
@@ -9,7 +9,9 @@ LIC_FILES_CHKSUM = "file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
file://ui/mtr.c;beginline=5;endline=16;md5=00a894a39d53726a27386534d1c4e468"
SRCREV = "852e5617fbf331cf292723702161f0ac9afe257c"
SRC_URI = "git://github.com/traviscross/mtr;branch=master;protocol=https"
SRC_URI = "git://github.com/traviscross/mtr;branch=master;protocol=https \
file://CVE-2025-49809.patch \
"
S = "${WORKDIR}/git"