+++ This bug was initially created as a clone of Bug #1796245 +++
Description of problem:
The CCE-27119-7 openscap rule requires that all system executables have root ownership. There is a binary file provided by abrt-addon-ccpp that violates this, and is owned by abrt:abrt instead of root:root
-rwsr-sr-x. 1 abrt abrt 15432 Mar 20 2019 /usr/libexec/abrt-action-install-debuginfo-to-abrt-cache
Version-Release number of selected component (if applicable):
abrt-addon-ccpp-2.1.11-55.el7.x86_64
How reproducible:
Always
Steps to Reproduce:
1. Install abrt-addon-ccpp
2. Utilize openscap to scan the system
Actual results:
- The /usr/libexec/abrt-action-install-debuginfo-to-abrt-cache is owned by abrt:abrt
Expected results:
- The /usr/libexec/abrt-action-install-debuginfo-to-abrt-cache file should be owned by root:root
--- Additional comment from Miroslav Suchý on 2020-05-06 17:17:12 UTC ---
Upstream Pull Requests:
https://github.com/abrt/libreport/pull/631https://github.com/abrt/abrt/pull/1485
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory (abrt bug fix and enhancement update), and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.
https://access.redhat.com/errata/RHBA-2020:4435