Guest

Preview Tool

Cisco Bug: CSCus26141 - Mount /tmp as a local disk volume instead of ramfs (needs new build env)

Last Modified

Aug 31, 2018

Products (1)

  • Cisco Application Policy Infrastructure Controller (APIC)

Known Affected Releases

1.0(2j) 1.1(0.825a)

Description (partial)

Symptoms:

A vulnerability within an APIC build environment could allow an authenticated, local attacker to create /tmp directory files causing the cgroup
to exceed memory limits causing bash and ssh sessions to terminate.

The vulnerability is due to an inefficient build environment. An attacker could exploit this vulnerability by modifying the system to cause user
groups to consume critical system memory.

Conditions:

/tmp files creating excessive logs which override RAM and system space.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.