Bug 1043847 - yum-rhn-plugin: slightly insecure use of /var/tmp
Summary: yum-rhn-plugin: slightly insecure use of /var/tmp
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Fedora
Classification: Fedora
Component: yum-rhn-plugin
Version: 22
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Miroslav Suchý
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks: 1043848 1043849 1043850
TreeView+ depends on / blocked
 
Reported: 2013-12-17 10:46 UTC by Florian Weimer
Modified: 2015-06-19 08:50 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
: 1043848 1043849 1043850 (view as bug list)
Environment:
Last Closed: 2015-06-19 08:50:36 UTC
Type: Bug

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Florian Weimer 2013-12-17 10:46:41 UTC 
touch follows symlinks, so this %pre script allows creation of zero-length files (as seen in yum-rhn-plugin-2.0.1-2):

%pre
# 682820 - re-enable yum-rhn-plugin after package upgrade if the system is already registered
export pluginconf='/etc/yum/pluginconf.d/rhnplugin.conf'
if [ $1 -gt 1 ] && [ -f /etc/sysconfig/rhn/systemid ] && [ -f "$pluginconf" ]; then
    if grep -q '^[[:space:]]*enabled[[:space:]]*=[[:space:]]*1[[:space:]]*$' \
       "$pluginconf"; then
        touch /var/tmp/enable-yum-rhn-plugin
    fi
fi

The flag should be stored somewhere else, perhaps in /etc.
Comment 1 Jaroslav Reznik 2015-03-03 15:19:51 UTC 
This bug appears to have been reported against 'rawhide' during the Fedora 22 development cycle.
Changing version to '22'.

More information and reason for this action is here:
https://fedoraproject.org/wiki/Fedora_Program_Management/HouseKeeping/Fedora22
Comment 2 Miroslav Suchý 2015-06-19 08:50:36 UTC 
Yum will very likely disappear soon (probably in F24), so I'm not going to spend time on this bug.
Note You need to log in before you can comment on or make changes to this bug.