Bug 741383
Summary: | CVE-2011-3707 php-pear-Auth-OpenID: installation path disclosure via a direct request to a .php file [fedora-all] | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Vincent Danen <vdanen> |
Component: | php-pear-Auth-OpenID | Assignee: | Kurt Seifried <kurt> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 15 | CC: | axel.thimm, kevin, kurt |
Target Milestone: | --- | Keywords: | Security, SecurityTracking |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Release Note | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-09-26 18:15:51 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 741382 |
Description
Vincent Danen
2011-09-26 17:43:08 UTC
NOTABUG: The Fedora packages install php-pear-Auth-OpenID to /usr/share/pear/Auth_OpenID/ outside the webroot and there is no mapping/etc. to expose that directory. Also it appears this bug was originally reported by yehg.net to Google, Yehg sources: http://yehg.net/lab/pr0js/advisories/path_disclosure/vanilla-2.0.16 http://yehg.net/lab/pr0js/advisories/path_disclosure/statusnet-0.9.6 indicate that some PHP apps ship a static copy of php-pear-Auth-OpenID within their files and expose them within the webroot. |