CVE-2024-1929

Name of the Vulnerable Software and Affected Versions dnf5daemon-server versions before 5.1.17

Description The issue concerns a local root exploit via a configuration dictionary in the dnf5daemon-server. It affects confidentiality and integrity. The org.rpm.dnf.v0.SessionManager.open session method is vulnerable, as it takes a key/value map of configuration entries. A sub-entry in this map, under the "config" key, is another key/value map, and its configuration values are forwarded as configuration overrides to the libdnf5::Base configuration without sanity checking, allowing an unprivileged user to influence practically all libdnf5 configuration aspects and achieve root access by loading a plug-in shared library under their control.

Recommendations For dnf5daemon-server versions before 5.1.17, update to version 5.1.17 or later to resolve the issue. As a temporary workaround, consider restricting access to the org.rpm.dnf.v0.SessionManager.open session method to minimize the risk of exploitation. Additionally, avoid using the "config" key in the configuration map until the issue is resolved.