Back to bug 680798
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jan Lieskovsky | 2011-02-27 19:42:04 UTC | CC | jkaluza, tsmetana | |
| Jan Lieskovsky | 2011-02-28 11:39:53 UTC | Priority | medium | low |
| Severity | medium | low | ||
| Petr Uzel | 2011-03-02 13:18:52 UTC | CC | petr.uzel | |
| Jan Lieskovsky | 2011-03-03 10:40:31 UTC | Summary | logrotate: Insecure permissions used by creation of new files | logrotate: TOCTOU race condition by creation of new files (between opening the file and moment, final permissions have been applied) [information disclosure] |
| Huzaifa S. Sidhpurwala | 2011-03-11 06:28:08 UTC | Summary | logrotate: TOCTOU race condition by creation of new files (between opening the file and moment, final permissions have been applied) [information disclosure] | CVE-2011-1098 logrotate: TOCTOU race condition by creation of new files (between opening the file and moment, final permissions have been applied) [information disclosure] |
| Alias | CVE-2011-1098 | |||
| Jan Kaluža | 2011-03-16 11:05:33 UTC | Status | NEW | ASSIGNED |
| Huzaifa S. Sidhpurwala | 2011-03-17 09:50:49 UTC | Depends On | 688518 | |
| Huzaifa S. Sidhpurwala | 2011-03-17 09:51:37 UTC | Depends On | 688519 | |
| Huzaifa S. Sidhpurwala | 2011-03-17 09:52:29 UTC | Depends On | 688520 | |
| Mark J. Cox | 2011-04-01 07:45:59 UTC | CC | mjc | |
| Whiteboard | public=20110213,reported=20110213,source=debian,impact=low,cvss2=4.7/AV:L/AC:M/Au:N/C:C/I:N/A:N,rhel-4/logrotate=affected,rhel-5/logrotate=affected,rhel-6/logrotate=affected,fedora-all/logrotate=affected | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=affected,rhel-5/logrotate=affected,rhel-6/logrotate=affected,fedora-all/logrotate=affected | ||
| Josh Bressers | 2011-06-29 17:42:08 UTC | Whiteboard | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=affected,rhel-5/logrotate=affected,rhel-6/logrotate=affected,fedora-all/logrotate=affected | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=defer,fedora-all/logrotate=defer |
| Josh Bressers | 2011-06-29 17:42:34 UTC | CC | bressers | |
| Tomas Hoger | 2011-06-29 17:47:58 UTC | Whiteboard | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=defer,fedora-all/logrotate=defer | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=defer,fedora-all/logrotate=affected |
| Josh Bressers | 2011-08-19 12:26:18 UTC | Whiteboard | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=defer,fedora-all/logrotate=affected | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=affects,fedora-all/logrotate=affected |
| Josh Bressers | 2011-08-19 12:26:27 UTC | Whiteboard | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=affects,fedora-all/logrotate=affected | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=affected,fedora-all/logrotate=affected |
| Tomas Hoger | 2012-03-02 12:16:16 UTC | Whiteboard | public=20110213,reported=20110213,source=debian,impact=low,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=defer,rhel-5/logrotate=defer,rhel-6/logrotate=affected,fedora-all/logrotate=affected | impact=low,public=20110213,reported=20110213,source=debian,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=wontfix,rhel-5/logrotate=defer,rhel-6/logrotate=affected,fedora-all/logrotate=affected |
| Tomas Smetana | 2014-10-14 12:56:17 UTC | CC | tsmetana | |
| Ján Rusnačko | 2015-07-30 13:14:03 UTC | Status | ASSIGNED | CLOSED |
| CC | jrusnack | |||
| Resolution | --- | ERRATA | ||
| Whiteboard | impact=low,public=20110213,reported=20110213,source=debian,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=wontfix,rhel-5/logrotate=defer,rhel-6/logrotate=affected,fedora-all/logrotate=affected | impact=low,public=20110213,reported=20110213,source=debian,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=wontfix,rhel-5/logrotate=wontfix,rhel-6/logrotate=affected,fedora-all/logrotate=affected | ||
| Last Closed | 2015-07-30 09:14:03 UTC | |||
| Ján Rusnačko | 2016-03-04 11:35:29 UTC | Whiteboard | impact=low,public=20110213,reported=20110213,source=debian,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=wontfix,rhel-5/logrotate=wontfix,rhel-6/logrotate=affected,fedora-all/logrotate=affected | impact=low,public=20110213,reported=20110213,source=debian,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=wontfix,rhel-5/logrotate=wontfix,rhel-6/logrotate=affected,fedora-all/logrotate=affected,cwe=CWE-367[auto] |
| Product Security DevOps Team | 2019-09-29 12:43:30 UTC | Whiteboard | impact=low,public=20110213,reported=20110213,source=debian,cvss2=1.9/AV:L/AC:M/Au:N/C:P/I:N/A:N,rhel-4/logrotate=wontfix,rhel-5/logrotate=wontfix,rhel-6/logrotate=affected,fedora-all/logrotate=affected,cwe=CWE-367[auto] |
Back to bug 680798