Bug 6749
Summary: | restoring a symlink changes owner/group of the target file | ||
---|---|---|---|
Product: | [Retired] Red Hat Linux | Reporter: | Chris Siebenmann <cks-rhbugzilla> |
Component: | dump | Assignee: | Nalin Dahyabhai <nalin> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 6.1 | CC: | bjn |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2000-02-03 18:44:09 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Chris Siebenmann
1999-11-05 10:33:06 UTC
Apparently the author has seen this also; he says in the attached that all versions (including 0.3, used in RedHat 5.2) are vulnerable, and that 0.4b9 fixes it to use lchown(): http://lwn.net/1999/1111/a/dump.html Is a new RPM in the works? lchown does not work on stock Red Hat 5.2 systems, so the "fix" is upgrading to Red Hat 6.0 (or upgrading glibc kernel and a bunch more). jbj indicates that this problem is solved in the current release. |