Impact
"loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. Before doing anything else "loolforkit" checks, if it was invoked by the "lool" user, and refuses to run with privileges, if it's not the case. In the vulnerable version of "loolforkit" this check was wrong, so a normal user could start "loolforkit" and eventually get local root privileges.
Patches
Users should upgrade to Collabora Online 4.2.13 or higher, or Collabora Online 6.4.3 or higher. Collabora Online 4.0.x is not affected.
Workarounds
Do not have normal users with shell access on production servers.
Credits
Thanks to Matthias Gerstner (SUSE) for raising the issue.
For more information
If you have any questions or comments about this advisory:
Impact
"loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. Before doing anything else "loolforkit" checks, if it was invoked by the "lool" user, and refuses to run with privileges, if it's not the case. In the vulnerable version of "loolforkit" this check was wrong, so a normal user could start "loolforkit" and eventually get local root privileges.
Patches
Users should upgrade to Collabora Online 4.2.13 or higher, or Collabora Online 6.4.3 or higher. Collabora Online 4.0.x is not affected.
Workarounds
Do not have normal users with shell access on production servers.
Credits
Thanks to Matthias Gerstner (SUSE) for raising the issue.
For more information
If you have any questions or comments about this advisory: