Bug 646386
Summary: | lnewusers can corrupt /etc/passwd | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Miroslav Vadkerti <mvadkert> |
Component: | libuser | Assignee: | Miloslav Trmač <mitr> |
Status: | CLOSED NOTABUG | QA Contact: | BaseOS QE Security Team <qe-baseos-security> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 5.6 | CC: | mmalik |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | 454892 | Environment: | |
Last Closed: | 2010-10-25 17:48:03 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 454892 | ||
Bug Blocks: |
Description
Miroslav Vadkerti
2010-10-25 09:44:02 UTC
See above: > I believe this is actually correct behavior: libc's getpwent() doesn't reject > pw_shell values that contain ':', only the first 6 ':' characters serve as > field separators. > It's somewhat counter-intuitive, but it is in principle possible that somebody's > shell path contains a ':', and lnewusers should not reject lines that come from > a working /etc/passwd. |