Bug 230823
Summary: | CVE-2007-1716 Ownership of devices not returned to root after logout from console | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | Andrew D. <adebened> |
Component: | pam | Assignee: | Tomas Mraz <tmraz> |
Status: | CLOSED ERRATA | QA Contact: | Brian Brock <bbrock> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 4.4 | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | source=redhat,impact=low,reported=20070327,public=20070303 | ||
Fixed In Version: | RHSA-2007-0737 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2007-11-15 15:03:24 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Andrew D.
2007-03-03 05:33:02 UTC
I experimented a bit more and the problem seems to be triggered by when a second user logs into the console. For example, a user is logged in at the text login (cntl-F5) and another user is logged in at the graphical login (cntl-F7). When one of these users logs out, ownership is not always released and does not get fixed when all users log out. Granted, it is rare that two users will ever e logged in at the console but sometimes it is useful to log in two users for testing purposes (say root and a regular user). I cant always reproduce it. It seems to be related to which user logs in and which user logs out first (the graphical or the text one) but it has happened several times. Once the problem occurs, logging in as root does not reset ownership to root. Thanks, Andrew hmm, so if you go back to an older kernel this goes away? what version would that be so we can identify what broke. thanks. Hi. I cant reboot at the moment due to user jobs running but I experimented a bit more with this. It seems more probable now that it's a pam bug and not kernel. I may not have noticed it in previous kernels just by not looking. Here are the exact steps to produce the issue as well as how to fix it without rebooting: 1) log in a user from the text login (cntl-alt-f5). 2) log in another user from the graphical login (cntl-alt-f7). 3) log out the text-login user. 4) log out the graphical login user. 5) log back in the graphical login user (user of step 2). 6) "ls -laF /dev" and notice that a bunch of devices are still owned by the original text login user (user of step 1). 7) As root do a "pam_console_apply -r", this resets the device ownerships to root. 8) remove the files in /var/run/console/ 9) log out and now everything is happy when you log back in again. If you skip step 8 the devices still remain property of root when a user logs in again. Thanks, Andrew Found the cause - it is a bug in pam_console which was always there. I don't know why nobody found it before. This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux maintenance release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux Update release for currently deployed products. This request is not yet committed for inclusion in an Update release. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2007-0737.html |