Bug 825275 (CVE-2012-2679)
| Summary: | CVE-2012-2679 rhncfg: Insecure permissions used for /var/log/rhncfg-actions file | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | cperry, jpazdziora, mmraka, msuchy, mzazrivec, security-response-team, sherr |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-09-20 02:10:43 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 824707, 832037 | ||
| Bug Blocks: | 825281 | ||
|
Description
Jan Lieskovsky
2012-05-25 14:18:22 UTC
The CVE identifier of CVE-2012-2679 has been assigned for this issue. This issue affects the versions of the rhncfg package, as shipped with Fedora release of 15, 16, and 17. Please schedule an update. Created rhncfg tracking bugs for this issue Affects: fedora-all [bug 832037] Acknowledgements: This issue was discovered by Paul Wouters of Red Hat. This issue has been addressed in following products: Red Hat Network Tools for RHEL 5 Red Hat Network Tools for RHEL 5.3.LL Red Hat Network Tools for RHEL 5.6.Z Red Hat Network Tools for RHEL 6 Red Hat Network Tools for RHEL 6.0.Z Red Hat Network Tools for RHEL 6.1.Z Red Hat Network Tools for RHEL 6.2.Z Red Hat Network Tools for RHEL 6.3.Z Via RHSA-2012:1369 https://rhn.redhat.com/errata/RHSA-2012-1369.html |