Cisco Bug: CSCus26141 - Mount /tmp as a local disk volume instead of ramfs (needs new build env)
Feb 11, 2018
- Cisco Application Policy Infrastructure Controller (APIC)
Known Affected Releases
Symptoms: A vulnerability within an APIC build environment could allow an authenticated, local attacker to create /tmp directory files causing the cgroup to exceed memory limits causing bash and ssh sessions to terminate. The vulnerability is due to an inefficient build environment. An attacker could exploit this vulnerability by modifying the system to cause user groups to consume critical system memory. Conditions: /tmp files creating excessive logs which override RAM and system space.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases