Bug 524829 (CVE-2009-3289)
Summary: | CVE-2009-3289 glib2: folder | symlink permissions change after copy via nautilus | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED UPSTREAM | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | unspecified | CC: | ienorand, mclasen, vdanen |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.gnome.org/show_bug.cgi?id=593406 | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-06-17 22:28:42 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 522351, 538223 | ||
Bug Blocks: |
Description
Jan Lieskovsky
2009-09-22 12:17:21 UTC
This issue does NOT affect the versions of the glib2 package, as shipped with Red Hat Enterprise Linux 3, 4, or 5. This issue affects the versions of glib2 package, as shipped with Fedora 10 and 11. Please fix. I think you mean glib2, not glib. Trying in Fedora 14, this seems to be corrected. If you copy your own home folder (with 0700 perms) to /tmp, when the copy is complete, it has 0700 perms again. During the copy it has 0775 perms, but changes when the copying is done. I believe this issue has been corrected upstream: commit 48e0af0157f52ac12b904bd92540432a18b139c7 Author: Benjamin Otte <otte> Date: Tue Sep 1 21:26:08 2009 +0200 Bug 593406 - Permissions set to 777 after copying via Nautilus Only fail to set the permissions when the actual file is a symlink. The previous fix failed for every file when NOFOLLOW_SYMLINKS was set. Test on RHEL6 as well and the destination file/directory will have the same permissions as the source. |